From 847e9575ed85eadb979bc416afec7cf898cf00d1 Mon Sep 17 00:00:00 2001 From: Julien Morvan Date: Fri, 31 Jul 2015 13:53:26 +0000 Subject: --- contrib/apparmor/gnunet-arm | 28 ++++++ contrib/apparmor/gnunet-daemon-exit | 24 +++++ contrib/apparmor/gnunet-daemon-hostlist | 66 +++++++++++++ contrib/apparmor/gnunet-daemon-latency-logger | 17 ++++ contrib/apparmor/gnunet-daemon-pt | 26 +++++ contrib/apparmor/gnunet-daemon-regexprofiler | 13 +++ contrib/apparmor/gnunet-daemon-testbed-blacklist | 13 +++ contrib/apparmor/gnunet-daemon-testbed-underlay | 23 +++++ contrib/apparmor/gnunet-daemon-topology | 27 +++++ contrib/apparmor/gnunet-dns2gns | 26 +++++ contrib/apparmor/gnunet-gns-proxy | 50 ++++++++++ contrib/apparmor/gnunet-helper-audio-playback | 10 ++ contrib/apparmor/gnunet-helper-audio-record | 10 ++ contrib/apparmor/gnunet-helper-dns | 45 +++++++++ contrib/apparmor/gnunet-helper-exit | 12 +++ contrib/apparmor/gnunet-helper-fs-publish | 14 +++ contrib/apparmor/gnunet-helper-nat-client | 12 +++ contrib/apparmor/gnunet-helper-nat-server | 12 +++ contrib/apparmor/gnunet-helper-testbed | 37 +++++++ contrib/apparmor/gnunet-helper-transport-wlan | 12 +++ .../apparmor/gnunet-helper-transport-wlan-dummy | 10 ++ contrib/apparmor/gnunet-helper-vpn | 21 ++++ contrib/apparmor/gnunet-namestore-fcfsd | 31 ++++++ contrib/apparmor/gnunet-service-arm | 109 +++++++++++++++++++++ contrib/apparmor/gnunet-service-ats | 20 ++++ contrib/apparmor/gnunet-service-cadet | 26 +++++ contrib/apparmor/gnunet-service-conversation | 28 ++++++ contrib/apparmor/gnunet-service-core | 20 ++++ contrib/apparmor/gnunet-service-datastore | 27 +++++ contrib/apparmor/gnunet-service-dht | 57 +++++++++++ contrib/apparmor/gnunet-service-dns | 20 ++++ contrib/apparmor/gnunet-service-fs | 60 ++++++++++++ contrib/apparmor/gnunet-service-gns | 30 ++++++ contrib/apparmor/gnunet-service-identity | 25 +++++ contrib/apparmor/gnunet-service-mesh | 30 ++++++ contrib/apparmor/gnunet-service-namecache | 30 ++++++ contrib/apparmor/gnunet-service-namestore | 36 +++++++ contrib/apparmor/gnunet-service-nse | 24 +++++ contrib/apparmor/gnunet-service-peerinfo | 21 ++++ contrib/apparmor/gnunet-service-peerstore | 24 +++++ contrib/apparmor/gnunet-service-regex | 18 ++++ contrib/apparmor/gnunet-service-resolver | 33 +++++++ contrib/apparmor/gnunet-service-revocation | 27 +++++ .../apparmor/gnunet-service-scalarproduct-alice | 13 +++ contrib/apparmor/gnunet-service-scalarproduct-bob | 14 +++ contrib/apparmor/gnunet-service-set | 18 ++++ contrib/apparmor/gnunet-service-statistics | 16 +++ contrib/apparmor/gnunet-service-template | 16 +++ contrib/apparmor/gnunet-service-testbed | 36 +++++++ contrib/apparmor/gnunet-service-testbed-logger | 17 ++++ contrib/apparmor/gnunet-service-transport | 29 ++++++ contrib/apparmor/gnunet-service-vpn | 28 ++++++ contrib/apparmor/tunables/gnunet | 1 + contrib/apparmor/usr.local.bin.gnunet-arm | 27 ----- ...usr.local.lib.gnunet.libexec.gnunet-daemon-exit | 23 ----- ...local.lib.gnunet.libexec.gnunet-daemon-hostlist | 65 ------------ ...lib.gnunet.libexec.gnunet-daemon-latency-logger | 16 --- .../usr.local.lib.gnunet.libexec.gnunet-daemon-pt | 25 ----- ....lib.gnunet.libexec.gnunet-daemon-regexprofiler | 12 --- ....gnunet.libexec.gnunet-daemon-testbed-blacklist | 12 --- ...b.gnunet.libexec.gnunet-daemon-testbed-underlay | 22 ----- ...local.lib.gnunet.libexec.gnunet-daemon-topology | 26 ----- .../usr.local.lib.gnunet.libexec.gnunet-dns2gns | 25 ----- .../usr.local.lib.gnunet.libexec.gnunet-gns-proxy | 49 --------- ...lib.gnunet.libexec.gnunet-helper-audio-playback | 9 -- ...l.lib.gnunet.libexec.gnunet-helper-audio-record | 9 -- .../usr.local.lib.gnunet.libexec.gnunet-helper-dns | 43 -------- ...usr.local.lib.gnunet.libexec.gnunet-helper-exit | 11 --- ...cal.lib.gnunet.libexec.gnunet-helper-fs-publish | 13 --- ...cal.lib.gnunet.libexec.gnunet-helper-nat-client | 11 --- ...cal.lib.gnunet.libexec.gnunet-helper-nat-server | 11 --- ....local.lib.gnunet.libexec.gnunet-helper-testbed | 36 ------- ...lib.gnunet.libexec.gnunet-helper-transport-wlan | 11 --- ...unet.libexec.gnunet-helper-transport-wlan-dummy | 9 -- .../usr.local.lib.gnunet.libexec.gnunet-helper-vpn | 16 --- ...local.lib.gnunet.libexec.gnunet-namestore-fcfsd | 30 ------ ...usr.local.lib.gnunet.libexec.gnunet-service-arm | 109 --------------------- ...usr.local.lib.gnunet.libexec.gnunet-service-ats | 19 ---- ...r.local.lib.gnunet.libexec.gnunet-service-cadet | 21 ---- ....lib.gnunet.libexec.gnunet-service-conversation | 27 ----- ...sr.local.lib.gnunet.libexec.gnunet-service-core | 19 ---- ...cal.lib.gnunet.libexec.gnunet-service-datastore | 26 ----- ...usr.local.lib.gnunet.libexec.gnunet-service-dht | 56 ----------- ...usr.local.lib.gnunet.libexec.gnunet-service-dns | 19 ---- .../usr.local.lib.gnunet.libexec.gnunet-service-fs | 59 ----------- ...usr.local.lib.gnunet.libexec.gnunet-service-gns | 29 ------ ...ocal.lib.gnunet.libexec.gnunet-service-identity | 24 ----- ...sr.local.lib.gnunet.libexec.gnunet-service-mesh | 29 ------ ...cal.lib.gnunet.libexec.gnunet-service-namecache | 29 ------ ...cal.lib.gnunet.libexec.gnunet-service-namestore | 35 ------- ...usr.local.lib.gnunet.libexec.gnunet-service-nse | 23 ----- ...ocal.lib.gnunet.libexec.gnunet-service-peerinfo | 20 ---- ...cal.lib.gnunet.libexec.gnunet-service-peerstore | 23 ----- ...r.local.lib.gnunet.libexec.gnunet-service-regex | 17 ---- ...ocal.lib.gnunet.libexec.gnunet-service-resolver | 32 ------ ...al.lib.gnunet.libexec.gnunet-service-revocation | 26 ----- ...unet.libexec.gnunet-service-scalarproduct-alice | 12 --- ...gnunet.libexec.gnunet-service-scalarproduct-bob | 11 --- ...usr.local.lib.gnunet.libexec.gnunet-service-set | 17 ---- ...al.lib.gnunet.libexec.gnunet-service-statistics | 15 --- ...ocal.lib.gnunet.libexec.gnunet-service-template | 15 --- ...local.lib.gnunet.libexec.gnunet-service-testbed | 35 ------- ...ib.gnunet.libexec.gnunet-service-testbed-logger | 16 --- ...cal.lib.gnunet.libexec.gnunet-service-transport | 28 ------ ...usr.local.lib.gnunet.libexec.gnunet-service-vpn | 26 ----- 105 files changed, 1392 insertions(+), 1328 deletions(-) create mode 100644 contrib/apparmor/gnunet-arm create mode 100644 contrib/apparmor/gnunet-daemon-exit create mode 100644 contrib/apparmor/gnunet-daemon-hostlist create mode 100644 contrib/apparmor/gnunet-daemon-latency-logger create mode 100644 contrib/apparmor/gnunet-daemon-pt create mode 100644 contrib/apparmor/gnunet-daemon-regexprofiler create mode 100644 contrib/apparmor/gnunet-daemon-testbed-blacklist create mode 100644 contrib/apparmor/gnunet-daemon-testbed-underlay create mode 100644 contrib/apparmor/gnunet-daemon-topology create mode 100644 contrib/apparmor/gnunet-dns2gns create mode 100644 contrib/apparmor/gnunet-gns-proxy create mode 100644 contrib/apparmor/gnunet-helper-audio-playback create mode 100644 contrib/apparmor/gnunet-helper-audio-record create mode 100644 contrib/apparmor/gnunet-helper-dns create mode 100644 contrib/apparmor/gnunet-helper-exit create mode 100644 contrib/apparmor/gnunet-helper-fs-publish create mode 100644 contrib/apparmor/gnunet-helper-nat-client create mode 100644 contrib/apparmor/gnunet-helper-nat-server create mode 100644 contrib/apparmor/gnunet-helper-testbed create mode 100644 contrib/apparmor/gnunet-helper-transport-wlan create mode 100644 contrib/apparmor/gnunet-helper-transport-wlan-dummy create mode 100644 contrib/apparmor/gnunet-helper-vpn create mode 100644 contrib/apparmor/gnunet-namestore-fcfsd create mode 100644 contrib/apparmor/gnunet-service-arm create mode 100644 contrib/apparmor/gnunet-service-ats create mode 100644 contrib/apparmor/gnunet-service-cadet create mode 100644 contrib/apparmor/gnunet-service-conversation create mode 100644 contrib/apparmor/gnunet-service-core create mode 100644 contrib/apparmor/gnunet-service-datastore create mode 100644 contrib/apparmor/gnunet-service-dht create mode 100644 contrib/apparmor/gnunet-service-dns create mode 100644 contrib/apparmor/gnunet-service-fs create mode 100644 contrib/apparmor/gnunet-service-gns create mode 100644 contrib/apparmor/gnunet-service-identity create mode 100644 contrib/apparmor/gnunet-service-mesh create mode 100644 contrib/apparmor/gnunet-service-namecache create mode 100644 contrib/apparmor/gnunet-service-namestore create mode 100644 contrib/apparmor/gnunet-service-nse create mode 100644 contrib/apparmor/gnunet-service-peerinfo create mode 100644 contrib/apparmor/gnunet-service-peerstore create mode 100644 contrib/apparmor/gnunet-service-regex create mode 100644 contrib/apparmor/gnunet-service-resolver create mode 100644 contrib/apparmor/gnunet-service-revocation create mode 100644 contrib/apparmor/gnunet-service-scalarproduct-alice create mode 100644 contrib/apparmor/gnunet-service-scalarproduct-bob create mode 100644 contrib/apparmor/gnunet-service-set create mode 100644 contrib/apparmor/gnunet-service-statistics create mode 100644 contrib/apparmor/gnunet-service-template create mode 100644 contrib/apparmor/gnunet-service-testbed create mode 100644 contrib/apparmor/gnunet-service-testbed-logger create mode 100644 contrib/apparmor/gnunet-service-transport create mode 100644 contrib/apparmor/gnunet-service-vpn create mode 100644 contrib/apparmor/tunables/gnunet delete mode 100644 contrib/apparmor/usr.local.bin.gnunet-arm delete mode 100644 contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-exit delete mode 100644 contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-hostlist delete mode 100644 contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-latency-logger delete mode 100644 contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-pt delete mode 100644 contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-regexprofiler delete mode 100644 contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-testbed-blacklist delete mode 100644 contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-testbed-underlay delete mode 100644 contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-topology delete mode 100644 contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-dns2gns delete mode 100644 contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-gns-proxy delete mode 100644 contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-audio-playback delete mode 100644 contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-audio-record delete mode 100644 contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-dns delete mode 100644 contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-exit delete mode 100644 contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-fs-publish delete mode 100644 contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-nat-client delete mode 100644 contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-nat-server delete mode 100644 contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-testbed delete mode 100644 contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-transport-wlan delete mode 100644 contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-transport-wlan-dummy delete mode 100644 contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-vpn delete mode 100644 contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-namestore-fcfsd delete mode 100644 contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-arm delete mode 100644 contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-ats delete mode 100644 contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-cadet delete mode 100644 contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-conversation delete mode 100644 contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-core delete mode 100644 contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-datastore delete mode 100644 contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-dht delete mode 100644 contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-dns delete mode 100644 contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-fs delete mode 100644 contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-gns delete mode 100644 contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-identity delete mode 100644 contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-mesh delete mode 100644 contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-namecache delete mode 100644 contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-namestore delete mode 100644 contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-nse delete mode 100644 contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-peerinfo delete mode 100644 contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-peerstore delete mode 100644 contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-regex delete mode 100644 contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-resolver delete mode 100644 contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-revocation delete mode 100644 contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-scalarproduct-alice delete mode 100644 contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-scalarproduct-bob delete mode 100644 contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-set delete mode 100644 contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-statistics delete mode 100644 contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-template delete mode 100644 contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-testbed delete mode 100644 contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-testbed-logger delete mode 100644 contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-transport delete mode 100644 contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-vpn (limited to 'contrib') diff --git a/contrib/apparmor/gnunet-arm b/contrib/apparmor/gnunet-arm new file mode 100644 index 000000000..d969f6af1 --- /dev/null +++ b/contrib/apparmor/gnunet-arm @@ -0,0 +1,28 @@ +#Last Modified: Fri Jul 3 14:48:33 2015 +#include +#include + +profile @{GNUNET_PREFIX}/bin/gnunet-arm { + #include + + @{GNUNET_PREFIX}/bin/gnunet-arm mr, + + /usr/lib/gconv/gconv-modules r, + + @{GNUNET_PREFIX}/lib/libgnunetarm.so.* mr, + + /dev/null ra, + + /usr/lib/locale/locale-archive r, + + /usr/share/locale/locale.alias r, + /usr/share/locale/fr/LC_MESSAGES/libc.mo r, + + #Gnunet service + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-arm Px , + + /tmp/gnunet-*-runtime/ rw, + /tmp/gnunet-*-runtime/gnunet-service-arm.sock rw, + + #/tmp/gnunet-gnunet-runtime/* rw, +} diff --git a/contrib/apparmor/gnunet-daemon-exit b/contrib/apparmor/gnunet-daemon-exit new file mode 100644 index 000000000..95f1c57d8 --- /dev/null +++ b/contrib/apparmor/gnunet-daemon-exit @@ -0,0 +1,24 @@ +# Last Modified: Mon Jul 27 15:57:50 2015 +#include +#include + +profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-exit { + #include + + /usr/lib/ld-*.so r, + + /usr/lib/locale/locale-archive r, + + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-exit mr, + + #Gnunet librairies + @{GNUNET_PREFIX}/lib/libgnunetcadet.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetdht.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetdnsstub.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetregex.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunettun.so.* mr, + + /usr/share/locale/locale.alias r, + +} diff --git a/contrib/apparmor/gnunet-daemon-hostlist b/contrib/apparmor/gnunet-daemon-hostlist new file mode 100644 index 000000000..82afb3848 --- /dev/null +++ b/contrib/apparmor/gnunet-daemon-hostlist @@ -0,0 +1,66 @@ +# Last Modified: Fri Jul 10 10:43:55 2015 +#include +#include + +profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-hostlist { + #include + + /etc/gai.conf r, + /etc/host.conf r, + /etc/hosts r, + /etc/nsswitch.conf r, + /etc/resolv.conf r, + + /usr/lib/gconv/gconv-modules r, + + #Librairies + /usr/lib/ld-*.so r, + /usr/lib/libacl.so.* mr, + /usr/lib/libattr.so.* mr, + /usr/lib/libcap.so.* mr, + /usr/lib/libcom_err.so.* mr, + /usr/lib/libcrypto.so.* mr, + /usr/lib/libffi.so.* mr, + /usr/lib/libgmp.so.* mr, + /usr/lib/libgnurl.so.* mr, + /usr/lib/libgnutls.so.* mr, + /usr/lib/libgssapi_krb5.so.* mr, + /usr/lib/libhogweed.so.* mr, + /usr/lib/libidn.so.* mr, + /usr/lib/libk5crypto.so.* mr, + /usr/lib/libkeyutils.so.* mr, + /usr/lib/libkrb5.so.* mr, + /usr/lib/libkrb5support.so.* mr, + /usr/lib/liblz4.so.* mr, + /usr/lib/liblzma.so.* mr, + /usr/lib/libmicrohttpd.so.* mr, + /usr/lib/libnettle.so.* mr, + /usr/lib/libnss_dns-*.so mr, + /usr/lib/libnss_files-*.so mr, + /usr/lib/libnss_gns.so.* mr, + /usr/lib/libnss_myhostname.so.* mr, + /usr/lib/libp11-kit.so.* mr, + /usr/lib/libpthread-*.so mr, + /usr/lib/libresolv-*.so mr, + /usr/lib/librt-*.so mr, + /usr/lib/libseccomp.so.* mr, + /usr/lib/libssh2.so.* mr, + /usr/lib/libssl.so.* mr, + /usr/lib/libtasn1.so.* mr, + + /usr/lib/locale/locale-archive r, + + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-hostlist mr, + + #Gnunet librairies + @{GNUNET_PREFIX}/lib/libgnunetats.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetcore.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunethello.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetpeerinfo.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunettransport.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetutil.so.* mr, + + /usr/share/locale/fr/LC_MESSAGES/libc.mo r, + /usr/share/locale/locale.alias r, +} diff --git a/contrib/apparmor/gnunet-daemon-latency-logger b/contrib/apparmor/gnunet-daemon-latency-logger new file mode 100644 index 000000000..38053ffec --- /dev/null +++ b/contrib/apparmor/gnunet-daemon-latency-logger @@ -0,0 +1,17 @@ +# Last Modified: Mon Jul 27 16:25:08 2015 +#include +#include + +profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-latency-logger { + #include + + /usr/lib/ld-*.so r, + /usr/lib/libpthread-*.so mr, + /usr/lib/libsqlite3.so.* mr, + /usr/lib/locale/locale-archive r, + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-latency-logger mr, + @{GNUNET_PREFIX}/lib/libgnunetats.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunethello.so.* mr, + /usr/share/locale/locale.alias r, + +} diff --git a/contrib/apparmor/gnunet-daemon-pt b/contrib/apparmor/gnunet-daemon-pt new file mode 100644 index 000000000..f14cf2922 --- /dev/null +++ b/contrib/apparmor/gnunet-daemon-pt @@ -0,0 +1,26 @@ +# Last Modified: Mon Jul 20 17:48:20 2015 +#include +#include + +profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-pt { + #include + + #Librairies + /usr/lib/ld-*.so r, + /usr/lib/libidn.so.* mr, + + /usr/lib/locale/locale-archive r, + + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-pt mr, + + #Gnunet librairies + @{GNUNET_PREFIX}/lib/libgnunetcadet.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetdht.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetdns.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetdnsparser.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetmesh.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetvpn.so.* mr, + + /usr/share/locale/locale.alias r, +} diff --git a/contrib/apparmor/gnunet-daemon-regexprofiler b/contrib/apparmor/gnunet-daemon-regexprofiler new file mode 100644 index 000000000..eface26d1 --- /dev/null +++ b/contrib/apparmor/gnunet-daemon-regexprofiler @@ -0,0 +1,13 @@ +# Last Modified: Tue Jul 28 11:42:58 2015 +#include +#include + +profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-regexprofiler flags=(complain) { + #include + + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-regexprofiler mr, + @{GNUNET_PREFIX}/lib/libgnunetdht.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetregexblock.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, + +} diff --git a/contrib/apparmor/gnunet-daemon-testbed-blacklist b/contrib/apparmor/gnunet-daemon-testbed-blacklist new file mode 100644 index 000000000..9dcfe321b --- /dev/null +++ b/contrib/apparmor/gnunet-daemon-testbed-blacklist @@ -0,0 +1,13 @@ +# Last Modified: Tue Jul 28 11:42:58 2015 +#include +#include + +profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-testbed-blacklist flags=(complain) { + #include + + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-testbed-blacklist mr, + @{GNUNET_PREFIX}/lib/libgnunetats.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunethello.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunettransport.so.* mr, + +} diff --git a/contrib/apparmor/gnunet-daemon-testbed-underlay b/contrib/apparmor/gnunet-daemon-testbed-underlay new file mode 100644 index 000000000..f11dcbca9 --- /dev/null +++ b/contrib/apparmor/gnunet-daemon-testbed-underlay @@ -0,0 +1,23 @@ +# Last Modified: Mon Jul 27 16:37:03 2015 +#include +#include + +profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-testbed-underlay { + #include + + #Librairies + /usr/lib/ld-*.so r, + /usr/lib/libpthread-*.so mr, + /usr/lib/libsqlite3.so.* mr, + + /usr/lib/locale/locale-archive r, + + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-testbed-underlay mr, + + #Gnunet librairies + @{GNUNET_PREFIX}/lib/libgnunetats.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunethello.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunettransport.so.* mr, + + /usr/share/locale/locale.alias r, +} diff --git a/contrib/apparmor/gnunet-daemon-topology b/contrib/apparmor/gnunet-daemon-topology new file mode 100644 index 000000000..b8b03082c --- /dev/null +++ b/contrib/apparmor/gnunet-daemon-topology @@ -0,0 +1,27 @@ +# Last Modified: Fri Jul 3 17:37:12 2015 +#include +#include + +profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-topology { + #include + + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-topology mr, + + #Gnunet librairies + @{GNUNET_PREFIX}/lib/libgnunetats.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetfriends.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetcore.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetpeerinfo.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunettransport.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunethello.so.* mr, + + /usr/lib/ld-*.so r, + + /usr/lib//locale/locale-archive r, + + /usr/lib/gconv/gconv-modules r, + + /usr/share/locale/locale.alias r, + /usr/share/locale/fr/LC_MESSAGES/libc.mo r, +} diff --git a/contrib/apparmor/gnunet-dns2gns b/contrib/apparmor/gnunet-dns2gns new file mode 100644 index 000000000..c860d56b0 --- /dev/null +++ b/contrib/apparmor/gnunet-dns2gns @@ -0,0 +1,26 @@ +# Last Modified: Tue Jul 21 16:45:05 2015 +#include +#include + +profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-dns2gns { + #include + + #Librairies + /usr/lib/ld-*.so r, + /usr/lib/libidn.so.* mr, + + /usr/lib/locale/locale-archive r, + + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-dns2gns mr, + + #Gnunet librairies + @{GNUNET_PREFIX}/lib/libgnunetdnsparser.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetdnsstub.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetgns.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetgnsrecord.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetidentity.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetnamestore.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, + + /usr/share/locale/locale.alias r, +} diff --git a/contrib/apparmor/gnunet-gns-proxy b/contrib/apparmor/gnunet-gns-proxy new file mode 100644 index 000000000..5d24b3a5e --- /dev/null +++ b/contrib/apparmor/gnunet-gns-proxy @@ -0,0 +1,50 @@ +# Last Modified: Tue Jul 21 16:35:07 2015 +#include +#include + +profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-gns-proxy { + #include + + /etc/ssl/openssl.cnf r, + + @{HOME}/.local/share/gnunet/gns/gns_ca_cert.pem r, + + #Librairies + /usr/lib/gconv/gconv-modules r, + /usr/lib/ld-*.so r, + /usr/lib/libcom_err.so.* mr, + /usr/lib/libcrypto.so.* mr, + /usr/lib/libffi.so.* mr, + /usr/lib/libgmp.so.* mr, + /usr/lib/libgnurl.so.* mr, + /usr/lib/libgnutls.so.* mr, + /usr/lib/libgssapi_krb5.so.* mr, + /usr/lib/libhogweed.so.* mr, + /usr/lib/libidn.so.* mr, + /usr/lib/libk5crypto.so.* mr, + /usr/lib/libkeyutils.so.* mr, + /usr/lib/libkrb5.so.* mr, + /usr/lib/libkrb5support.so.* mr, + /usr/lib/libltdl.so.* mr, + /usr/lib/libmicrohttpd.so.* mr, + /usr/lib/libnettle.so.* mr, + /usr/lib/libp11-kit.so.* mr, + /usr/lib/libpthread-*.so mr, + /usr/lib/libresolv-*.so mr, + /usr/lib/libssh2.so.* mr, + /usr/lib/libssl.so.* mr, + /usr/lib/libtasn1.so.* mr, + + /usr/lib/locale/locale-archive r, + + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-gns-proxy mr, + + #Gnunet librairies + @{GNUNET_PREFIX}/lib/libgnunetdnsparser.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetgns.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetgnsrecord.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetidentity.so.* mr, + + /usr/share/locale/fr/LC_MESSAGES/libc.mo r, + /usr/share/locale/locale.alias r, +} diff --git a/contrib/apparmor/gnunet-helper-audio-playback b/contrib/apparmor/gnunet-helper-audio-playback new file mode 100644 index 000000000..b98b22b69 --- /dev/null +++ b/contrib/apparmor/gnunet-helper-audio-playback @@ -0,0 +1,10 @@ +# Last Modified: Tue Jul 28 11:46:24 2015 +#include +#include + +profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-audio-playback flags=(complain) { + #include + #include + + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-audio-playback mr, +} diff --git a/contrib/apparmor/gnunet-helper-audio-record b/contrib/apparmor/gnunet-helper-audio-record new file mode 100644 index 000000000..f85b83d9f --- /dev/null +++ b/contrib/apparmor/gnunet-helper-audio-record @@ -0,0 +1,10 @@ +# Last Modified: Tue Jul 28 11:42:58 2015 +#include +#include + +profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-audio-record flags=(complain) { + #include + #include + + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-audio-record mr, +} diff --git a/contrib/apparmor/gnunet-helper-dns b/contrib/apparmor/gnunet-helper-dns new file mode 100644 index 000000000..b6a102585 --- /dev/null +++ b/contrib/apparmor/gnunet-helper-dns @@ -0,0 +1,45 @@ +# Last Modified: Mon Jul 27 15:24:34 2015 +#include +#include + +profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-dns flags=(complain) { + #include + + #Capability + capability net_admin, + capability net_raw, + capability setuid, + + /dev/net/tun rw, + /dev/null rw, + + /etc/gai.conf r, + /etc/group r, + /etc/iproute2/rt_tables r, + /etc/nsswitch.conf r, + /etc/protocols r, + + @{PROC}/@{pid}/net/ip_tables_names r, + @{PROC}/sys/net/ipv4/conf/all/rp_filter rw, + @{PROC}/sys/net/ipv4/conf/default/rp_filter rw, + + /usr/bin/ip rix, + /usr/bin/sysctl rix, + /usr/bin/xtables-multi rix, + + #Librairies + /usr/lib/iptables/libxt_MARK.so mr, + /usr/lib/iptables/libxt_owner.so mr, + /usr/lib/iptables/libxt_standard.so mr, + /usr/lib/iptables/libxt_udp.so mr, + /usr/lib/ld-*.so r, + /usr/lib/libip4tc.so.* mr, + /usr/lib/libip6tc.so.* mr, + /usr/lib/libnss_files-*.so mr, + + /usr/lib/libxtables.so.* mr, + + /usr/lib/locale/locale-archive r, + + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-dns mr, +} diff --git a/contrib/apparmor/gnunet-helper-exit b/contrib/apparmor/gnunet-helper-exit new file mode 100644 index 000000000..d185f5b80 --- /dev/null +++ b/contrib/apparmor/gnunet-helper-exit @@ -0,0 +1,12 @@ +# Last Modified: Tue Jul 28 11:44:00 2015 +#include +#include + +profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-exit flags=(complain) { + #include + + capability setuid, + + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-exit mr, + +} diff --git a/contrib/apparmor/gnunet-helper-fs-publish b/contrib/apparmor/gnunet-helper-fs-publish new file mode 100644 index 000000000..ccf0cb513 --- /dev/null +++ b/contrib/apparmor/gnunet-helper-fs-publish @@ -0,0 +1,14 @@ +# Last Modified: Tue Jul 28 11:42:58 2015 +#include +#include + +profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-fs-publish flags=(complain) { + #include + + /usr/lib/libbz2.so.* mr, + /usr/lib/libextractor.so.* mr, + /usr/lib/libpthread-*.so mr, + /usr/lib/librt-*.so mr, + + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-fs-publish mr, +} diff --git a/contrib/apparmor/gnunet-helper-nat-client b/contrib/apparmor/gnunet-helper-nat-client new file mode 100644 index 000000000..19a563878 --- /dev/null +++ b/contrib/apparmor/gnunet-helper-nat-client @@ -0,0 +1,12 @@ +# Last Modified: Tue Jul 28 11:44:00 2015 +#include +#include + +profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-nat-client flags=(complain) { + #include + + capability setuid, + + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-nat-client mr, + +} diff --git a/contrib/apparmor/gnunet-helper-nat-server b/contrib/apparmor/gnunet-helper-nat-server new file mode 100644 index 000000000..594d2de7a --- /dev/null +++ b/contrib/apparmor/gnunet-helper-nat-server @@ -0,0 +1,12 @@ +# Last Modified: Tue Jul 28 11:44:00 2015 +#include +#include + +profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-nat-server flags=(complain) { + #include + + capability setuid, + + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-nat-server mr, + +} diff --git a/contrib/apparmor/gnunet-helper-testbed b/contrib/apparmor/gnunet-helper-testbed new file mode 100644 index 000000000..22ac13347 --- /dev/null +++ b/contrib/apparmor/gnunet-helper-testbed @@ -0,0 +1,37 @@ +# Last Modified: Mon Jul 27 11:02:37 2015 +#include +#include + +profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-testbed flags=(complain) { + #include + + /dev/null rw, + + /etc/gai.conf r, + + /usr/lib/ld-*.so r, + + /usr/lib/locale/locale-archive r, + + /usr/share/locale/locale.alias r, + /usr/share/locale/fr/LC_MESSAGES/libc.mo r, + + /usr/lib/gconv/gconv-modules r, + + @{GNUNET_PREFIX}/lib/gnunet/libexec/ r, + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-testbed mr, + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-arm r, + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-testbed Px, + + #Gnunet librairies + @{GNUNET_PREFIX}/lib/libgnunetarm.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetats.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetcore.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunethello.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunettestbed.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunettesting.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunettransport.so.* mr, + + @{GNUNET_PREFIX}/share/gnunet/testing_hostkeys.ecc r, +} diff --git a/contrib/apparmor/gnunet-helper-transport-wlan b/contrib/apparmor/gnunet-helper-transport-wlan new file mode 100644 index 000000000..0f1d5cf57 --- /dev/null +++ b/contrib/apparmor/gnunet-helper-transport-wlan @@ -0,0 +1,12 @@ +# Last Modified: Tue Jul 28 11:44:00 2015 +#include +#include + +profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-transport-wlan flags=(complain) { + #include + + capability setuid, + + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-transport-wlan mr, + +} diff --git a/contrib/apparmor/gnunet-helper-transport-wlan-dummy b/contrib/apparmor/gnunet-helper-transport-wlan-dummy new file mode 100644 index 000000000..9ad58e5d0 --- /dev/null +++ b/contrib/apparmor/gnunet-helper-transport-wlan-dummy @@ -0,0 +1,10 @@ +# Last Modified: Tue Jul 28 11:36:52 2015 +#include +#include + +profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-transport-wlan-dummy flags=(complain) { + #include + + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-transport-wlan-dummy mr, + +} diff --git a/contrib/apparmor/gnunet-helper-vpn b/contrib/apparmor/gnunet-helper-vpn new file mode 100644 index 000000000..9be198d76 --- /dev/null +++ b/contrib/apparmor/gnunet-helper-vpn @@ -0,0 +1,21 @@ +# Last Modified: Mon Jul 27 11:06:22 2015 +#include +#include + +profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-vpn flags=(complain) { + + #Capability + capability net_admin, + capability setuid, + + /dev/net/tun rw, + /etc/ld.so.cache r, + + #Librairies + /usr/lib/ld-*.so r, + /usr/lib/libc-*.so mr, + /usr/lib/libm-*.so mr, + + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-vpn mr, + +} diff --git a/contrib/apparmor/gnunet-namestore-fcfsd b/contrib/apparmor/gnunet-namestore-fcfsd new file mode 100644 index 000000000..9c57801a9 --- /dev/null +++ b/contrib/apparmor/gnunet-namestore-fcfsd @@ -0,0 +1,31 @@ +# Last Modified: Tue Jul 21 17:25:12 2015 +#include +#include + +profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-namestore-fcfsd { + #include + + #Librairies + /usr/lib/ld-*.so r, + /usr/lib/libffi.so.* mr, + /usr/lib/libgmp.so.* mr, + /usr/lib/libgnutls.so.* mr, + /usr/lib/libhogweed.so.* mr, + /usr/lib/libidn.so.* mr, + /usr/lib/libmicrohttpd.so.* mr, + /usr/lib/libnettle.so.* mr, + /usr/lib/libp11-kit.so.* mr, + /usr/lib/libpthread-*.so mr, + /usr/lib/libtasn1.so.* mr, + + /usr/lib/locale/locale-archive r, + + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-namestore-fcfsd mr, + + #Gnunet librairies + @{GNUNET_PREFIX}/lib/libgnunetdnsparser.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetgnsrecord.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetidentity.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetnamestore.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, +} diff --git a/contrib/apparmor/gnunet-service-arm b/contrib/apparmor/gnunet-service-arm new file mode 100644 index 000000000..5428c3ca9 --- /dev/null +++ b/contrib/apparmor/gnunet-service-arm @@ -0,0 +1,109 @@ +# Last Modified: Thu Jul 9 10:27:23 2015 +#include +#include + +profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-arm { + #include + + /dev/null ra, + + /tmp/gnunet-*-runtime/ rw, + /tmp/gnunet-*-runtime/gnunet-service-arm.sock rw, + /tmp/gnunet-*-runtime/gnunet-service-gns.sock rw, + /tmp/gnunet-*-runtime/gnunet-service-identity.unix rw, + /tmp/gnunet-*-runtime/gnunet-service-namestore.sock rw, + + /tmp/gnunet-system-runtime/ rw, + /tmp/gnunet-system-runtime/gnunet-service-*.sock rw, + /tmp/gnunet-system-runtime/gnunet-service-nse.unix rw, + /tmp/gnunet-system-runtime/gnunet-service-revocation.unix rw, + + /var/lib/gnunet/.local/share/gnunet/ r, + /var/lib/gnunet/.local/share/gnunet/revocation.dat r, + /var/lib/gnunet/.local/share/gnunet/peerstore/ a, + /var/lib/gnunet/.local/share/gnunet/peerstore/sqlite.db rwk, + /var/lib/gnunet/.local/share/gnunet/peerstore/sqlite.db-journal rw, + /var/lib/gnunet/.config/gnunet.conf r, + + #Librairies + /usr/lib/ld-*.so r, + /usr/lib/libpthread-*.so mr, + + /usr/lib/libsqlite3.so.* mr, + + /usr/lib/locale/locale-archive r, + + /usr/share/locale/locale-alias r, + + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-arm mr, + + @{GNUNET_PREFIX}/lib/gnunet/ r, + + @{GNUNET_PREFIX}/lib/gnunet/libexec/ r, + + #Gnunet daemon + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-exit Px, + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-hostlist Px, + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-latency-logger Px, + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-testbed-underlay Px, + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-topology Px, + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-daemon-pt Px, + + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-dns2gns Px, + + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-gns-proxy Px, + + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-namestore-fcfsd Px, + + #Gnunet service + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-ats Px, + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-cadet Px, + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-core Px, + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-conversation Px, + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-datastore Px, + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-dht Px, + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-dns Px, + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-fs Px, + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-gns Px, + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-identity Px, + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-mesh Px, + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-namecache Px, + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-namestore Px, + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-nse Px, + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-peerinfo Px, + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-peerstore Px, + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-regex Px, + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-resolver Px, + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-revocation Px, + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-set Px, + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-scalarproduct-alice Px, + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-scalarproduct-bob Px, + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-statistics Px, + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-template Px, + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-testbed Px, + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-testbed-logger Px, + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-transport Px, + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-vpn Px, + + #Gnunet helper + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-dns r, + + #Gnunet librairies + @{GNUNET_PREFIX}/lib/libgnunetats.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetcadet.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetdht.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetdnsstub.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetgnsrecord.so.* r, + @{GNUNET_PREFIX}/lib/libgnunethello.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetnamecache.so.* r, + @{GNUNET_PREFIX}/lib/libgnunetpeerstore.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetregex.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetset.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunettransport.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunettun.so.* mr, + + #Gnunet plugin + @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_peerstore_sqlite.la r, + @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_peerstore_sqlite.so mr, +} diff --git a/contrib/apparmor/gnunet-service-ats b/contrib/apparmor/gnunet-service-ats new file mode 100644 index 000000000..53e849517 --- /dev/null +++ b/contrib/apparmor/gnunet-service-ats @@ -0,0 +1,20 @@ +# Last Modified: Wed Jul 8 10:49:34 2015 +#include +#include + +profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-ats { + #include + + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-ats mr, + + #Gnunet librairies + @{GNUNET_PREFIX}/lib/libgnunethello.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetats.so.* mr, + + #Gnunet plugin + @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_ats_proportional.la r, + @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_ats_proportional.so mr, + + /usr/lib/ld-*.so r, +} diff --git a/contrib/apparmor/gnunet-service-cadet b/contrib/apparmor/gnunet-service-cadet new file mode 100644 index 000000000..07def08ad --- /dev/null +++ b/contrib/apparmor/gnunet-service-cadet @@ -0,0 +1,26 @@ +# Last Modified: Mon Jul 27 11:09:34 2015 +#include +#include + +profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-cadet { + #include + + #Librairies + /usr/lib/ld-*.so r, + /usr/lib/libpthread-*.so mr, + /usr/lib/librt-*.so mr, + + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-cadet mr, + + #Gnunet librairies + @{GNUNET_PREFIX}/lib/libgnunetats.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetblock.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetcore.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetdht.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunethello.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetpeerinfo.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunettransport.so.* mr, + + /var/lib/gnunet/.local/share/gnunet/private_key.ecc rk, +} diff --git a/contrib/apparmor/gnunet-service-conversation b/contrib/apparmor/gnunet-service-conversation new file mode 100644 index 000000000..d43c6d7a4 --- /dev/null +++ b/contrib/apparmor/gnunet-service-conversation @@ -0,0 +1,28 @@ +# Last Modified: Tue Jul 21 16:53:39 2015 +#include +#include + +profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-conversation { + #include + + #Librairies + /usr/lib/ld-*.so r, + /usr/lib/libidn.so.* mr, + + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-conversation mr, + + #Gnunet librairies + @{GNUNET_PREFIX}/lib/libgnunetcadet.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetconversation.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetdnsparser.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetgns.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetgnsrecord.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetidentity.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetmesh.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetmicrophone.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetnamestore.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetspeaker.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, + + /var/lib/gnunet/.local/share/gnunet/private_key.ecc rk, +} diff --git a/contrib/apparmor/gnunet-service-core b/contrib/apparmor/gnunet-service-core new file mode 100644 index 000000000..24fdd641c --- /dev/null +++ b/contrib/apparmor/gnunet-service-core @@ -0,0 +1,20 @@ +# Last Modified: Thu Jul 9 10:16:30 2015 + +#include +#include + +profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-core { + #include + + /var/lib/gnunet/.local/share/gnunet/private_key.ecc rk, + + /usr/lib/ld-*.so r, + + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-core mr, + + #Gnunet librairies + @{GNUNET_PREFIX}/lib/libgnunetats.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunethello.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunettransport.so.* mr, +} diff --git a/contrib/apparmor/gnunet-service-datastore b/contrib/apparmor/gnunet-service-datastore new file mode 100644 index 000000000..363946910 --- /dev/null +++ b/contrib/apparmor/gnunet-service-datastore @@ -0,0 +1,27 @@ +# Last Modified: Thu Jul 9 10:16:30 2015 + +#include +#include + +profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-datastore { + #include + + /var/lib/gnunet/.local/share/gnunet/datastore/bloomfilter.sqlite rw, + /var/lib/gnunet/.local/share/gnunet/datastore/sqlite.db rwk, + /var/lib/gnunet/.local/share/gnunet/datastore/sqlite.db-journal rw, + + #Librairies + /usr/lib/ld-*.so r, + /usr/lib/libpthread-*.so mr, + /usr/lib/libsqlite3.so.* mr, + + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-datastore mr, + + #Gnunet plugin + @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_datastore_sqlite.la r, + @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_datastore_sqlite.so mr, + + #Gnunet Librairies + @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetutil.so.* mr, +} diff --git a/contrib/apparmor/gnunet-service-dht b/contrib/apparmor/gnunet-service-dht new file mode 100644 index 000000000..67c45beb8 --- /dev/null +++ b/contrib/apparmor/gnunet-service-dht @@ -0,0 +1,57 @@ +# Last Modified: Fri Jul 3 17:37:39 2015 +#include +#include + +profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-dht { + #include + + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-dht mr, + + #Gnunet librairies + @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetcore.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetnse.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetats.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunettransport.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetpeerinfo.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunethello.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetblock.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetdatacache.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetfs.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetdatastore.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetregexblock.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetgnsrecord.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetdnsparser.so.* mr, + + #Gnunet plugin + @{GNUNET_PREFIX}/lib/gnunet/ r, + @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_template.la r, + @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_template.so mr, + @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_dns.la r, + @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_dns.so mr, + @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_fs.la r, + @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_fs.so mr, + @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_regex.la r, + @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_regex.so mr, + @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_dht.la r, + @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_dht.so mr, + @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_dht.so mr, + @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_test.la r, + @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_test.so mr, + @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_gns.la r, + @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_gns.so mr, + @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_datacache_heap.la r, + @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_datacache_heap.so mr, + + #Librairies + /usr/lib/ld-*.so r, + /usr/lib/libextractor.so.* mr, + /usr/lib/libbz2.so.* mr, + /usr/lib/librt-*.so mr, + /usr/lib/libpthread-*.so mr, + /usr/lib/libidn.so.* mr, + + /tmp/gnunet-system-runtime/gnunet-service-dht.sock w, + + /tmp/gnunet-datacachebloom* rw, +} diff --git a/contrib/apparmor/gnunet-service-dns b/contrib/apparmor/gnunet-service-dns new file mode 100644 index 000000000..ba8a31ce1 --- /dev/null +++ b/contrib/apparmor/gnunet-service-dns @@ -0,0 +1,20 @@ +# Last Modified: Mon Jul 27 15:18:30 2015 +#include +#include + +profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-dns { + #include + + capability setgid, + + /usr/lib/ld-*.so r, + + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-dns Px, + + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-dns mr, + + #Gnunet librairies + @{GNUNET_PREFIX}/lib/libgnunetdnsstub.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunettun.so.* mr, +} diff --git a/contrib/apparmor/gnunet-service-fs b/contrib/apparmor/gnunet-service-fs new file mode 100644 index 000000000..3d792e44d --- /dev/null +++ b/contrib/apparmor/gnunet-service-fs @@ -0,0 +1,60 @@ +# Last Modified: Wed Jul 8 10:52:48 2015 + +#include +#include + +profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-fs { + #include + + /etc/gnunet.conf r, + @{HOME}/.config/gnunet.conf r, + + /tmp/gnunet-system-runtime/gnunet-service-fs.sock w, + + /var/lib/gnunet/.local/share/gnunet/private_key.ecc rk, + + owner @{HOME}/.local/share/gnunet/fs/idxinfo.lst r, + + #Librairies + /usr/lib/ld-*.so r, + /usr/lib/libbz2.so.* mr, + /usr/lib/libextractor.so.* mr, + /usr/lib/libidn.so.* mr, + /usr/lib/libpthread-*.so mr, + /usr/lib/librt-*.so mr, + + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-fs mr, + + #Gnunet plugin + @{GNUNET_PREFIX}/lib/gnunet/ r, + @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_dht.la r, + @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_dht.so mr, + @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_dns.la r, + @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_dns.so mr, + @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_fs.la r, + @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_fs.so mr, + @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_gns.la r, + @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_gns.so mr, + @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_regex.la r, + @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_regex.so mr, + @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_template.la r, + @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_template.so mr, + @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_test.la r, + @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_block_test.so mr, + + #Gnunet librairies + @{GNUNET_PREFIX}/lib/libgnunetats.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetblock.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetcadet.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetcore.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetdatastore.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetdht.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetdnsparser.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetfs.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetgnsrecord.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunethello.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetmesh.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetpeerstore.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetregexblock.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, +} diff --git a/contrib/apparmor/gnunet-service-gns b/contrib/apparmor/gnunet-service-gns new file mode 100644 index 000000000..b271eecba --- /dev/null +++ b/contrib/apparmor/gnunet-service-gns @@ -0,0 +1,30 @@ +# Last Modified: Wed Jul 8 15:17:46 2015 + +#include +#include + +profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-gns { + #include + + @{HOME}/.config/gnunet.conf r, + + #Librairies + /usr/lib/ld-2.21.so r, + /usr/lib/libidn.so.* mr, + + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-gns mr, + + #Gnunet librairies + @{GNUNET_PREFIX}/lib/libgnunetdht.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetdns.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetdnsparser.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetdnsstub.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetgnsrecord.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetidentity.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetnamecache.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetnamestore.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetrevocation.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunettun.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetvpn.so.* mr, +} diff --git a/contrib/apparmor/gnunet-service-identity b/contrib/apparmor/gnunet-service-identity new file mode 100644 index 000000000..8cf0f99b6 --- /dev/null +++ b/contrib/apparmor/gnunet-service-identity @@ -0,0 +1,25 @@ +# Last Modified: Tue Jul 21 11:51:29 2015 +#include +#include + +profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-identity { + #include + + /tmp/gnunet-*-runtime/ a, + + /usr/lib/ld-*.so r, + + /var/lib/gnunet/.local/share/gnunet/identity/ a, + /var/lib/gnunet/.local/share/gnunet/identity/egos/ ra, + + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-identity mr, + @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, + + @{HOME}/.config/gnunet/identity/subsystem_defaults.conf rw, + + @{HOME}/.local/share/gnunet/identity/egos/ r, + @{HOME}/.local/share/gnunet/identity/egos/master-zone rk, + @{HOME}/.local/share/gnunet/identity/egos/private-zone rk, + @{HOME}/.local/share/gnunet/identity/egos/short-zone rk, + @{HOME}/.local/share/gnunet/identity/egos/sks-zone rk, +} diff --git a/contrib/apparmor/gnunet-service-mesh b/contrib/apparmor/gnunet-service-mesh new file mode 100644 index 000000000..91c3044ae --- /dev/null +++ b/contrib/apparmor/gnunet-service-mesh @@ -0,0 +1,30 @@ +# Last Modified: Fri Jul 3 17:37:56 2015 +#include +#include + +profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-mesh { + #include + + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-mesh mr, + + #Gnunet librairies + @{GNUNET_PREFIX}/lib/libgnunetats.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunettransport.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetcore.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetdht.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetpeerinfo.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunethello.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetblock.so.* mr, + + #Librairies + /usr/lib/librt-*.so mr, + /usr/lib/libpthread-*.so mr, + /usr/lib/ld-*.so r, + + @{HOME}/.local/share/gnunet/private_key.ecc rk, + + /tmp/gnunet-system-runtime/gnunet-service-mesh.sock w, + + /var/lib/gnunet/.local/share/gnunet/private_key.ecc rwk, +} diff --git a/contrib/apparmor/gnunet-service-namecache b/contrib/apparmor/gnunet-service-namecache new file mode 100644 index 000000000..8b5f21103 --- /dev/null +++ b/contrib/apparmor/gnunet-service-namecache @@ -0,0 +1,30 @@ +# Last Modified: Thu Jul 9 10:01:49 2015 +#include +#include + +profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-namecache { + #include + + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-namecache mr, + + #Gnunet librairies + @{GNUNET_PREFIX}/lib/libgnunetdnsparser.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetnamecache.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetgnsrecord.so.* mr, + + #Gnunet plugin + @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_namecache_sqlite.la r, + @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_namecache_sqlite.so mr, + + /var/lib/gnunet/.local/share/gnunet/namecache/ r, + /var/lib/gnunet/.local/share/gnunet/namecache/sqlite.db rwk, + /var/lib/gnunet/.local/share/gnunet/namecache/sqlite.db-journal rw, + + #Librairies + /usr/lib/libpthread-*.so mr, + /usr/lib/libsqlite3.so.* mr, + /usr/lib/libidn.so.* mr, + /usr/lib/ld-*.so r, +} + diff --git a/contrib/apparmor/gnunet-service-namestore b/contrib/apparmor/gnunet-service-namestore new file mode 100644 index 000000000..68b94e6aa --- /dev/null +++ b/contrib/apparmor/gnunet-service-namestore @@ -0,0 +1,36 @@ +# Last Modified: Tue Jul 7 10:43:41 2015 +#include +#include + +profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-namestore { + #include + + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-namestore mr, + + #Gnunet librairies + @{GNUNET_PREFIX}/lib/libgnunetnamecache.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetgnsrecord.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetnamestore.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetdnsparser.so.* mr, + + #Gnunet plugin + @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_namestore_sqlite.la r, + @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_namestore_sqlite.so mr, + + #Librairies + /usr/lib/libidn.so.* mr, + /usr/lib/ld-*.so r, + /usr/lib/libsqlite3.so.* mr, + /usr/lib/libpthread-*.so mr, + + /var/lib/gnunet/.local/share/gnunet/namestore/ ra, + /var/lib/gnunet/.local/share/gnunet/namestore/sqlite.db rwk, + /var/lib/gnunet/.local/share/gnunet/namestore/sqlite.db-journal rw, + + @{HOME}/.local/share/gnunet/namestore/ r, + @{HOME}/.local/share/gnunet/namestore/sqlite.db rwk, + @{HOME}/.local/share/gnunet/namestore/sqlite.db-journal rw, + + /tmp/gnunet-*-runtime/ a, +} diff --git a/contrib/apparmor/gnunet-service-nse b/contrib/apparmor/gnunet-service-nse new file mode 100644 index 000000000..a3f7f2a12 --- /dev/null +++ b/contrib/apparmor/gnunet-service-nse @@ -0,0 +1,24 @@ +# Last Modified: Fri Jul 3 17:37:49 2015 +#include +#include + +profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-nse { + #include + + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-nse mr, + + #Gnunet librairies + @{GNUNET_PREFIX}/lib/libgnunetnse.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetcore.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, + + /usr/lib/ld-*.so mr, + + /tmp/gnunet-system-runtime/gnunet-service-nse.unix w, + + @{HOME}/.local/share/gnunet/private_key.ecc rk, + owner @{HOME}/.local/share/gnunet/nse/proof.dat rw, + + /var/lib/gnunet/.local/share/gnunet/private_key.ecc rwk, + /var/lib/gnunet/.local/share/gnunet/nse/proof.dat rw, +} diff --git a/contrib/apparmor/gnunet-service-peerinfo b/contrib/apparmor/gnunet-service-peerinfo new file mode 100644 index 000000000..1ce4a85f8 --- /dev/null +++ b/contrib/apparmor/gnunet-service-peerinfo @@ -0,0 +1,21 @@ +# Last Modified: Wed Jul 8 17:03:17 2015 + +#include +#include + +profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-peerinfo { + #include + + @{GNUNET_PREFIX}/share/gnunet/hellos/ r, + @{GNUNET_PREFIX}/share/gnunet/hellos/* r, + + /var/lib/gnunet/.local/share/gnunet/peerinfo/hosts/ r, + /var/lib/gnunet/.local/share/gnunet/peerinfo/hosts/* rw, + + /usr/lib/ld-*.so r, + + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-peerinfo mr, + + @{GNUNET_PREFIX}/lib/libgnunethello.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, +} diff --git a/contrib/apparmor/gnunet-service-peerstore b/contrib/apparmor/gnunet-service-peerstore new file mode 100644 index 000000000..536e4ee0f --- /dev/null +++ b/contrib/apparmor/gnunet-service-peerstore @@ -0,0 +1,24 @@ +# Last Modified: Mon Jul 27 11:06:13 2015 +#include +#include + +profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-peerstore { + #include + + #Librairies + /usr/lib/ld-*.so r, + /usr/lib/libpthread-*.so mr, + /usr/lib/libsqlite3.so.* mr, + + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-peerstore mr, + + #Gnunet Plugin + @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_peerstore_sqlite.la r, + @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_peerstore_sqlite.so mr, + + #Gnunet librairies + @{GNUNET_PREFIX}/lib/libgnunetpeerstore.so.* mr, + + /var/lib/gnunet/.local/share/gnunet/peerstore/sqlite.db rwk, + /var/lib/gnunet/.local/share/gnunet/peerstore/sqlite.db-journal rw, +} diff --git a/contrib/apparmor/gnunet-service-regex b/contrib/apparmor/gnunet-service-regex new file mode 100644 index 000000000..358675dc0 --- /dev/null +++ b/contrib/apparmor/gnunet-service-regex @@ -0,0 +1,18 @@ +# Last Modified: Tue Jul 21 16:59:39 2015 +#include +#include + +profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-regex { + #include + + /usr/lib/ld-*.so r, + + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-regex mr, + + #Gnunet librairies + @{GNUNET_PREFIX}/lib/libgnunetdht.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetregexblock.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, + + /var/lib/gnunet/.local/share/gnunet/private_key.ecc rk, +} diff --git a/contrib/apparmor/gnunet-service-resolver b/contrib/apparmor/gnunet-service-resolver new file mode 100644 index 000000000..6c5e3eb60 --- /dev/null +++ b/contrib/apparmor/gnunet-service-resolver @@ -0,0 +1,33 @@ +# Last Modified: Thu Jul 9 10:01:36 2015 +#include +#include + +profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-resolver { + #include + + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-resolver mr, + + #Librairies + /usr/lib/ld-*.so r, + /usr/lib/libnss_files-*.so mr, + /usr/lib/libnss_gns.so.* mr, + /usr/lib/libnss_dns-*.so mr, + /usr/lib/libresolv-*.so mr, + /usr/lib/libnss_myhostname.so.* mr, + /usr/lib/librt-*.so mr, + /usr/lib/liblzma.so.* mr, + /usr/lib/liblz4.so.* mr, + /usr/lib/libacl.so.* mr, + /usr/lib/libidn.so.* mr, + /usr/lib/libseccomp.so.* mr, + /usr/lib/libcap.so.* mr, + /usr/lib/libpthread-*.so mr, + /usr/lib/libattr.so.* mr, + + /etc/nsswitch.conf r, + /etc/resolv.conf r, + /etc/host.conf r, + /etc/hosts r, + + /tmp/gnunet-system-runtime/gnunet-service-resolver.sock w, +} diff --git a/contrib/apparmor/gnunet-service-revocation b/contrib/apparmor/gnunet-service-revocation new file mode 100644 index 000000000..6e6412820 --- /dev/null +++ b/contrib/apparmor/gnunet-service-revocation @@ -0,0 +1,27 @@ +# Last Modified: Thu Jul 9 10:16:30 2015 + +#include +#include + +profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-revocation { + #include + + /etc/gnunet.conf r, + @{HOME}/.config/gnunet.conf r, + + /tmp/gnunet-system-runtime/gnunet-service-revocation.unix w, + + /var/lib/gnunet/.local/share/gnunet/revocation.dat rw, + + @{HOME}/.local/share/gnunet/revocation.dat rw, + + /usr/lib/ld-*.so r, + + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-revocation mr, + + #Gnunet librairies + @{GNUNET_PREFIX}/lib/libgnunetcore.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetrevocation.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetset.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, +} diff --git a/contrib/apparmor/gnunet-service-scalarproduct-alice b/contrib/apparmor/gnunet-service-scalarproduct-alice new file mode 100644 index 000000000..7a7ba77d5 --- /dev/null +++ b/contrib/apparmor/gnunet-service-scalarproduct-alice @@ -0,0 +1,13 @@ +# Last Modified: Mon Jul 27 15:48:05 2015 +#include +#include + +profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-scalarproduct-alice { + #include + + /usr/lib/ld-*.so r, + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-scalarproduct-alice mr, + @{GNUNET_PREFIX}/lib/libgnunetcadet.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetset.so.* mr, + +} diff --git a/contrib/apparmor/gnunet-service-scalarproduct-bob b/contrib/apparmor/gnunet-service-scalarproduct-bob new file mode 100644 index 000000000..a7faae9d0 --- /dev/null +++ b/contrib/apparmor/gnunet-service-scalarproduct-bob @@ -0,0 +1,14 @@ +# Last Modified: Mon Jul 27 15:48:05 2015 +#include +#include + +profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-scalarproduct-bob { + #include + + /usr/lib/ld-*.so r, + + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-scalarproduct-bob mr, + + @{GNUNET_PREFIX}/lib/libgnunetcadet.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetset.so.* mr, +} diff --git a/contrib/apparmor/gnunet-service-set b/contrib/apparmor/gnunet-service-set new file mode 100644 index 000000000..d290f7eda --- /dev/null +++ b/contrib/apparmor/gnunet-service-set @@ -0,0 +1,18 @@ +# Last Modified: Wed Jul 8 10:52:48 2015 +#include +#include + +profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-set { + #include + + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-set mr, + + #Gnunet librairies + @{GNUNET_PREFIX}/lib/libgnunetcadet.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetcore.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetmesh.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetblock.so.* mr, + + #Librairies + /usr/lib/ld-*.so r, +} diff --git a/contrib/apparmor/gnunet-service-statistics b/contrib/apparmor/gnunet-service-statistics new file mode 100644 index 000000000..e26e30edc --- /dev/null +++ b/contrib/apparmor/gnunet-service-statistics @@ -0,0 +1,16 @@ +# Last Modified: Thu Jul 9 10:16:30 2015 + +#include +#include + +profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-statistics { + #include + + /var/lib/gnunet/.local/share/gnunet/statistics.dat rw, + + /usr/lib/ld-*.so r, + + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-statistics mr, + + @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, +} diff --git a/contrib/apparmor/gnunet-service-template b/contrib/apparmor/gnunet-service-template new file mode 100644 index 000000000..824183e78 --- /dev/null +++ b/contrib/apparmor/gnunet-service-template @@ -0,0 +1,16 @@ +# Last Modified: Tue Jul 21 16:06:04 2015 +#include +#include + +profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-template { + #include + + /tmp/gnunet-system-runtime/ w, + /tmp/gnunet-system-runtime/gnunet-service-template.sock w, + + #Librairies + /usr/lib/ld-*.so r, + + #Gnunet Librairies + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-template mr, +} diff --git a/contrib/apparmor/gnunet-service-testbed b/contrib/apparmor/gnunet-service-testbed new file mode 100644 index 000000000..06e8f36ea --- /dev/null +++ b/contrib/apparmor/gnunet-service-testbed @@ -0,0 +1,36 @@ +# Last Modified: Mon Jul 27 11:02:46 2015 +#include +#include + +profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-testbed flags=(complain) { + #include + + /etc/gai.conf r, + + /tmp/gnunet-system-runtime/ w, + /tmp/gnunet-system-runtime/gnunet-service-testbed-barrier.sock w, + /tmp/gnunet-system-runtime/gnunet-service-testbed.sock w, + + /usr/lib/ld-*.so r, + + /dev/null r, + + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-* r, + + @{GNUNET_PREFIX}/lib/gnunet/libexec/ r, + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-arm Px, + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-testbed mr, + + #Gnunet librairies + @{GNUNET_PREFIX}/lib/libgnunetarm.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetats.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetcore.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunethello.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunettestbed.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunettesting.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunettransport.so.* mr, + + @{GNUNET_PREFIX}/share/gnunet/testing_hostkeys.ecc r, + +} diff --git a/contrib/apparmor/gnunet-service-testbed-logger b/contrib/apparmor/gnunet-service-testbed-logger new file mode 100644 index 000000000..5bd6a77d3 --- /dev/null +++ b/contrib/apparmor/gnunet-service-testbed-logger @@ -0,0 +1,17 @@ +# Last Modified: Tue Jul 21 17:19:18 2015 +#include +#include + +profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-testbed-logger { + #include + + #??? + /tmp/archlinux_*.dat w, + + /tmp/gnunet-system-runtime/ w, + /tmp/gnunet-system-runtime/gnunet-gnunet-testbed-logger.sock w, + + /usr/lib/ld-*.so r, + + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-testbed-logger mr, +} diff --git a/contrib/apparmor/gnunet-service-transport b/contrib/apparmor/gnunet-service-transport new file mode 100644 index 000000000..52985cf1b --- /dev/null +++ b/contrib/apparmor/gnunet-service-transport @@ -0,0 +1,29 @@ +# Last Modified: Thu Jul 9 10:16:30 2015 + +#include +#include + +profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-transport { + #include + + /var/lib/gnunet/.local/share/gnunet/private_key.ecc rk, + + /usr/lib/ld-*.so r, + + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-transport mr, + + #Gnunet plugin + @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_transport_tcp.la r, + @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_transport_tcp.so mr, + @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_transport_udp.la r, + @{GNUNET_PREFIX}/lib/gnunet/libgnunet_plugin_transport_udp.so mr, + + #Gnunet librairies + @{GNUNET_PREFIX}/lib/libgnunetats.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetfragmentation.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunethello.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetnat.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetpeerinfo.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunettransport.so.* mr, +} diff --git a/contrib/apparmor/gnunet-service-vpn b/contrib/apparmor/gnunet-service-vpn new file mode 100644 index 000000000..56845568e --- /dev/null +++ b/contrib/apparmor/gnunet-service-vpn @@ -0,0 +1,28 @@ +# Last Modified: Mon Jul 20 11:20:57 2015 +#include +#include + +profile @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-vpn { + #include + + #Capability + capability setuid, + capability net_admin, + + /dev/net/tun rw, + + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-service-vpn mr, + + #Librairies + /usr/lib/ld-*.so r, + + #Gnunet helper + @{GNUNET_PREFIX}/lib/gnunet/libexec/gnunet-helper-vpn Px, + + #Gnunet librairies + @{GNUNET_PREFIX}/lib/libgnunetcadet.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetmesh.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetregex.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunetstatistics.so.* mr, + @{GNUNET_PREFIX}/lib/libgnunettun.so.* mr, +} diff --git a/contrib/apparmor/tunables/gnunet b/contrib/apparmor/tunables/gnunet new file mode 100644 index 000000000..e7ff8256a --- /dev/null +++ b/contrib/apparmor/tunables/gnunet @@ -0,0 +1 @@ +@{GNUNET_PREFIX}=/usr/local diff --git a/contrib/apparmor/usr.local.bin.gnunet-arm b/contrib/apparmor/usr.local.bin.gnunet-arm deleted file mode 100644 index 83f758238..000000000 --- a/contrib/apparmor/usr.local.bin.gnunet-arm +++ /dev/null @@ -1,27 +0,0 @@ -#/usr/local/lib Last Modified: Fri Jul 3 14:48:33 2015 -#include - -/usr/local/bin/gnunet-arm { - #include - - /usr/local/bin/gnunet-arm mr, - - /usr/lib/gconv/gconv-modules r, - - /usr/local/lib/libgnunetarm.so.* mr, - - /dev/null ra, - - /usr/lib/locale/locale-archive r, - - /usr/share/locale/locale.alias r, - /usr/share/locale/fr/LC_MESSAGES/libc.mo r, - - #Gnunet service - /usr/local/lib/gnunet/libexec/gnunet-service-arm Px , - - /tmp/gnunet-*-runtime/ rw, - /tmp/gnunet-*-runtime/gnunet-service-arm.sock rw, - - #/tmp/gnunet-gnunet-runtime/* rw, -} diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-exit b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-exit deleted file mode 100644 index 122b729bd..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-exit +++ /dev/null @@ -1,23 +0,0 @@ -# Last Modified: Mon Jul 27 15:57:50 2015 -#include - -/usr/local/lib/gnunet/libexec/gnunet-daemon-exit { - #include - - /usr/lib/ld-*.so r, - - /usr/lib/locale/locale-archive r, - - /usr/local/lib/gnunet/libexec/gnunet-daemon-exit mr, - - #Gnunet librairies - /usr/local/lib/libgnunetcadet.so.* mr, - /usr/local/lib/libgnunetdht.so.* mr, - /usr/local/lib/libgnunetdnsstub.so.* mr, - /usr/local/lib/libgnunetregex.so.* mr, - /usr/local/lib/libgnunetstatistics.so.* mr, - /usr/local/lib/libgnunettun.so.* mr, - - /usr/share/locale/locale.alias r, - -} diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-hostlist b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-hostlist deleted file mode 100644 index d9d32cb61..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-hostlist +++ /dev/null @@ -1,65 +0,0 @@ -# Last Modified: Fri Jul 10 10:43:55 2015 -#include - -/usr/local/lib/gnunet/libexec/gnunet-daemon-hostlist { - #include - - /etc/gai.conf r, - /etc/host.conf r, - /etc/hosts r, - /etc/nsswitch.conf r, - /etc/resolv.conf r, - - /usr/lib/gconv/gconv-modules r, - - #Librairies - /usr/lib/ld-*.so r, - /usr/lib/libacl.so.* mr, - /usr/lib/libattr.so.* mr, - /usr/lib/libcap.so.* mr, - /usr/lib/libcom_err.so.* mr, - /usr/lib/libcrypto.so.* mr, - /usr/lib/libffi.so.* mr, - /usr/lib/libgmp.so.* mr, - /usr/lib/libgnurl.so.* mr, - /usr/lib/libgnutls.so.* mr, - /usr/lib/libgssapi_krb5.so.* mr, - /usr/lib/libhogweed.so.* mr, - /usr/lib/libidn.so.* mr, - /usr/lib/libk5crypto.so.* mr, - /usr/lib/libkeyutils.so.* mr, - /usr/lib/libkrb5.so.* mr, - /usr/lib/libkrb5support.so.* mr, - /usr/lib/liblz4.so.* mr, - /usr/lib/liblzma.so.* mr, - /usr/lib/libmicrohttpd.so.* mr, - /usr/lib/libnettle.so.* mr, - /usr/lib/libnss_dns-*.so mr, - /usr/lib/libnss_files-*.so mr, - /usr/lib/libnss_gns.so.* mr, - /usr/lib/libnss_myhostname.so.* mr, - /usr/lib/libp11-kit.so.* mr, - /usr/lib/libpthread-*.so mr, - /usr/lib/libresolv-*.so mr, - /usr/lib/librt-*.so mr, - /usr/lib/libseccomp.so.* mr, - /usr/lib/libssh2.so.* mr, - /usr/lib/libssl.so.* mr, - /usr/lib/libtasn1.so.* mr, - - /usr/lib/locale/locale-archive r, - - /usr/local/lib/gnunet/libexec/gnunet-daemon-hostlist mr, - - #Gnunet librairies - /usr/local/lib/libgnunetats.so.* mr, - /usr/local/lib/libgnunetcore.so.* mr, - /usr/local/lib/libgnunethello.so.* mr, - /usr/local/lib/libgnunetpeerinfo.so.* mr, - /usr/local/lib/libgnunetstatistics.so.* mr, - /usr/local/lib/libgnunettransport.so.* mr, - /usr/local/lib/libgnunetutil.so.* mr, - - /usr/share/locale/fr/LC_MESSAGES/libc.mo r, - /usr/share/locale/locale.alias r, -} diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-latency-logger b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-latency-logger deleted file mode 100644 index a25852bf8..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-latency-logger +++ /dev/null @@ -1,16 +0,0 @@ -# Last Modified: Mon Jul 27 16:25:08 2015 -#include - -/usr/local/lib/gnunet/libexec/gnunet-daemon-latency-logger { - #include - - /usr/lib/ld-*.so r, - /usr/lib/libpthread-*.so mr, - /usr/lib/libsqlite3.so.* mr, - /usr/lib/locale/locale-archive r, - /usr/local/lib/gnunet/libexec/gnunet-daemon-latency-logger mr, - /usr/local/lib/libgnunetats.so.* mr, - /usr/local/lib/libgnunethello.so.* mr, - /usr/share/locale/locale.alias r, - -} diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-pt b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-pt deleted file mode 100644 index 95a1bcf52..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-pt +++ /dev/null @@ -1,25 +0,0 @@ -# Last Modified: Mon Jul 20 17:48:20 2015 -#include - -/usr/local/lib/gnunet/libexec/gnunet-daemon-pt { - #include - - #Librairies - /usr/lib/ld-*.so r, - /usr/lib/libidn.so.* mr, - - /usr/lib/locale/locale-archive r, - - /usr/local/lib/gnunet/libexec/gnunet-daemon-pt mr, - - #Gnunet librairies - /usr/local/lib/libgnunetcadet.so.* mr, - /usr/local/lib/libgnunetdht.so.* mr, - /usr/local/lib/libgnunetdns.so.* mr, - /usr/local/lib/libgnunetdnsparser.so.* mr, - /usr/local/lib/libgnunetmesh.so.* mr, - /usr/local/lib/libgnunetstatistics.so.* mr, - /usr/local/lib/libgnunetvpn.so.* mr, - - /usr/share/locale/locale.alias r, -} diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-regexprofiler b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-regexprofiler deleted file mode 100644 index da3d40887..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-regexprofiler +++ /dev/null @@ -1,12 +0,0 @@ -# Last Modified: Tue Jul 28 11:42:58 2015 -#include - -/usr/local/lib/gnunet/libexec/gnunet-daemon-regexprofiler flags=(complain) { - #include - - /usr/local/lib/gnunet/libexec/gnunet-daemon-regexprofiler mr, - /usr/local/lib/libgnunetdht.so.* mr, - /usr/local/lib/libgnunetregexblock.so.* mr, - /usr/local/lib/libgnunetstatistics.so.* mr, - -} diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-testbed-blacklist b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-testbed-blacklist deleted file mode 100644 index 15fa9ffe5..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-testbed-blacklist +++ /dev/null @@ -1,12 +0,0 @@ -# Last Modified: Tue Jul 28 11:42:58 2015 -#include - -/usr/local/lib/gnunet/libexec/gnunet-daemon-testbed-blacklist flags=(complain) { - #include - - /usr/local/lib/gnunet/libexec/gnunet-daemon-testbed-blacklist mr, - /usr/local/lib/libgnunetats.so.* mr, - /usr/local/lib/libgnunethello.so.* mr, - /usr/local/lib/libgnunettransport.so.* mr, - -} diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-testbed-underlay b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-testbed-underlay deleted file mode 100644 index 260b60400..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-testbed-underlay +++ /dev/null @@ -1,22 +0,0 @@ -# Last Modified: Mon Jul 27 16:37:03 2015 -#include - -/usr/local/lib/gnunet/libexec/gnunet-daemon-testbed-underlay { - #include - - #Librairies - /usr/lib/ld-*.so r, - /usr/lib/libpthread-*.so mr, - /usr/lib/libsqlite3.so.* mr, - - /usr/lib/locale/locale-archive r, - - /usr/local/lib/gnunet/libexec/gnunet-daemon-testbed-underlay mr, - - #Gnunet librairies - /usr/local/lib/libgnunetats.so.* mr, - /usr/local/lib/libgnunethello.so.* mr, - /usr/local/lib/libgnunettransport.so.* mr, - - /usr/share/locale/locale.alias r, -} diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-topology b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-topology deleted file mode 100644 index eb1d9306f..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-daemon-topology +++ /dev/null @@ -1,26 +0,0 @@ -# Last Modified: Fri Jul 3 17:37:12 2015 -#include - -/usr/local/lib/gnunet/libexec/gnunet-daemon-topology { - #include - - /usr/local/lib/gnunet/libexec/gnunet-daemon-topology mr, - - #Gnunet librairies - /usr/local/lib/libgnunetats.so.* mr, - /usr/local/lib/libgnunetfriends.so.* mr, - /usr/local/lib/libgnunetcore.so.* mr, - /usr/local/lib/libgnunetpeerinfo.so.* mr, - /usr/local/lib/libgnunetstatistics.so.* mr, - /usr/local/lib/libgnunettransport.so.* mr, - /usr/local/lib/libgnunethello.so.* mr, - - /usr/lib/ld-*.so r, - - /usr/lib//locale/locale-archive r, - - /usr/lib/gconv/gconv-modules r, - - /usr/share/locale/locale.alias r, - /usr/share/locale/fr/LC_MESSAGES/libc.mo r, -} diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-dns2gns b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-dns2gns deleted file mode 100644 index 5b1bdc2b0..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-dns2gns +++ /dev/null @@ -1,25 +0,0 @@ -# Last Modified: Tue Jul 21 16:45:05 2015 -#include - -/usr/local/lib/gnunet/libexec/gnunet-dns2gns { - #include - - #Librairies - /usr/lib/ld-*.so r, - /usr/lib/libidn.so.* mr, - - /usr/lib/locale/locale-archive r, - - /usr/local/lib/gnunet/libexec/gnunet-dns2gns mr, - - #Gnunet librairies - /usr/local/lib/libgnunetdnsparser.so.* mr, - /usr/local/lib/libgnunetdnsstub.so.* mr, - /usr/local/lib/libgnunetgns.so.* mr, - /usr/local/lib/libgnunetgnsrecord.so.* mr, - /usr/local/lib/libgnunetidentity.so.* mr, - /usr/local/lib/libgnunetnamestore.so.* mr, - /usr/local/lib/libgnunetstatistics.so.* mr, - - /usr/share/locale/locale.alias r, -} diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-gns-proxy b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-gns-proxy deleted file mode 100644 index 62efa7744..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-gns-proxy +++ /dev/null @@ -1,49 +0,0 @@ -# Last Modified: Tue Jul 21 16:35:07 2015 -#include - -/usr/local/lib/gnunet/libexec/gnunet-gns-proxy { - #include - - /etc/ssl/openssl.cnf r, - - @{HOME}/.local/share/gnunet/gns/gns_ca_cert.pem r, - - #Librairies - /usr/lib/gconv/gconv-modules r, - /usr/lib/ld-*.so r, - /usr/lib/libcom_err.so.* mr, - /usr/lib/libcrypto.so.* mr, - /usr/lib/libffi.so.* mr, - /usr/lib/libgmp.so.* mr, - /usr/lib/libgnurl.so.* mr, - /usr/lib/libgnutls.so.* mr, - /usr/lib/libgssapi_krb5.so.* mr, - /usr/lib/libhogweed.so.* mr, - /usr/lib/libidn.so.* mr, - /usr/lib/libk5crypto.so.* mr, - /usr/lib/libkeyutils.so.* mr, - /usr/lib/libkrb5.so.* mr, - /usr/lib/libkrb5support.so.* mr, - /usr/lib/libltdl.so.* mr, - /usr/lib/libmicrohttpd.so.* mr, - /usr/lib/libnettle.so.* mr, - /usr/lib/libp11-kit.so.* mr, - /usr/lib/libpthread-*.so mr, - /usr/lib/libresolv-*.so mr, - /usr/lib/libssh2.so.* mr, - /usr/lib/libssl.so.* mr, - /usr/lib/libtasn1.so.* mr, - - /usr/lib/locale/locale-archive r, - - /usr/local/lib/gnunet/libexec/gnunet-gns-proxy mr, - - #Gnunet librairies - /usr/local/lib/libgnunetdnsparser.so.* mr, - /usr/local/lib/libgnunetgns.so.* mr, - /usr/local/lib/libgnunetgnsrecord.so.* mr, - /usr/local/lib/libgnunetidentity.so.* mr, - - /usr/share/locale/fr/LC_MESSAGES/libc.mo r, - /usr/share/locale/locale.alias r, -} diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-audio-playback b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-audio-playback deleted file mode 100644 index b6663899e..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-audio-playback +++ /dev/null @@ -1,9 +0,0 @@ -# Last Modified: Tue Jul 28 11:46:24 2015 -#include - -/usr/local/lib/gnunet/libexec/gnunet-helper-audio-playback flags=(complain) { - #include - #include - - /usr/local/lib/gnunet/libexec/gnunet-helper-audio-playback mr, -} diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-audio-record b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-audio-record deleted file mode 100644 index e0a41edc3..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-audio-record +++ /dev/null @@ -1,9 +0,0 @@ -# Last Modified: Tue Jul 28 11:42:58 2015 -#include - -/usr/local/lib/gnunet/libexec/gnunet-helper-audio-record flags=(complain) { - #include - #include - - /usr/local/lib/gnunet/libexec/gnunet-helper-audio-record mr, -} diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-dns b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-dns deleted file mode 100644 index 960cf09b5..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-dns +++ /dev/null @@ -1,43 +0,0 @@ -# Last Modified: Mon Jul 27 15:24:34 2015 -#include - -/usr/local/lib/gnunet/libexec/gnunet-helper-dns flags=(complain) { - #include - - capability net_admin, - capability net_raw, - capability setuid, - - /dev/net/tun rw, - /dev/null rw, - - /etc/gai.conf r, - /etc/group r, - /etc/iproute2/rt_tables r, - /etc/nsswitch.conf r, - /etc/protocols r, - - @{PROC}/@{pid}/net/ip_tables_names r, - @{PROC}/sys/net/ipv4/conf/all/rp_filter rw, - @{PROC}/sys/net/ipv4/conf/default/rp_filter rw, - - /usr/bin/ip rix, - /usr/bin/sysctl rix, - /usr/bin/xtables-multi rix, - - /usr/lib/iptables/libxt_MARK.so mr, - /usr/lib/iptables/libxt_owner.so mr, - /usr/lib/iptables/libxt_standard.so mr, - /usr/lib/iptables/libxt_udp.so mr, - - /usr/lib/ld-*.so r, - /usr/lib/libip4tc.so.* mr, - /usr/lib/libip6tc.so.* mr, - /usr/lib/libnss_files-*.so mr, - - /usr/lib/libxtables.so.* mr, - - /usr/lib/locale/locale-archive r, - - /usr/local/lib/gnunet/libexec/gnunet-helper-dns mr, -} diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-exit b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-exit deleted file mode 100644 index e18b49358..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-exit +++ /dev/null @@ -1,11 +0,0 @@ -# Last Modified: Tue Jul 28 11:44:00 2015 -#include - -/usr/local/lib/gnunet/libexec/gnunet-helper-exit flags=(complain) { - #include - - capability setuid, - - /usr/local/lib/gnunet/libexec/gnunet-helper-exit mr, - -} diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-fs-publish b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-fs-publish deleted file mode 100644 index ad0a142f7..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-fs-publish +++ /dev/null @@ -1,13 +0,0 @@ -# Last Modified: Tue Jul 28 11:42:58 2015 -#include - -/usr/local/lib/gnunet/libexec/gnunet-helper-fs-publish flags=(complain) { - #include - - /usr/lib/libbz2.so.* mr, - /usr/lib/libextractor.so.* mr, - /usr/lib/libpthread-*.so mr, - /usr/lib/librt-*.so mr, - - /usr/local/lib/gnunet/libexec/gnunet-helper-fs-publish mr, -} diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-nat-client b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-nat-client deleted file mode 100644 index 32cb42552..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-nat-client +++ /dev/null @@ -1,11 +0,0 @@ -# Last Modified: Tue Jul 28 11:44:00 2015 -#include - -/usr/local/lib/gnunet/libexec/gnunet-helper-nat-client flags=(complain) { - #include - - capability setuid, - - /usr/local/lib/gnunet/libexec/gnunet-helper-nat-client mr, - -} diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-nat-server b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-nat-server deleted file mode 100644 index c3bd37910..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-nat-server +++ /dev/null @@ -1,11 +0,0 @@ -# Last Modified: Tue Jul 28 11:44:00 2015 -#include - -/usr/local/lib/gnunet/libexec/gnunet-helper-nat-server flags=(complain) { - #include - - capability setuid, - - /usr/local/lib/gnunet/libexec/gnunet-helper-nat-server mr, - -} diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-testbed b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-testbed deleted file mode 100644 index 8c6748d4a..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-testbed +++ /dev/null @@ -1,36 +0,0 @@ -# Last Modified: Mon Jul 27 11:02:37 2015 -#include - -/usr/local/lib/gnunet/libexec/gnunet-helper-testbed flags=(complain) { - #include - - /dev/null rw, - - /etc/gai.conf r, - - /usr/lib/ld-*.so r, - - /usr/lib/locale/locale-archive r, - - /usr/share/locale/locale.alias r, - /usr/share/locale/fr/LC_MESSAGES/libc.mo r, - - /usr/lib/gconv/gconv-modules r, - - /usr/local/lib/gnunet/libexec/ r, - /usr/local/lib/gnunet/libexec/gnunet-helper-testbed mr, - /usr/local/lib/gnunet/libexec/gnunet-service-arm r, - /usr/local/lib/gnunet/libexec/gnunet-service-testbed Px, - - #Gnunet librairies - /usr/local/lib/libgnunetarm.so.* mr, - /usr/local/lib/libgnunetats.so.* mr, - /usr/local/lib/libgnunetcore.so.* mr, - /usr/local/lib/libgnunethello.so.* mr, - /usr/local/lib/libgnunetstatistics.so.* mr, - /usr/local/lib/libgnunettestbed.so.* mr, - /usr/local/lib/libgnunettesting.so.* mr, - /usr/local/lib/libgnunettransport.so.* mr, - - /usr/local/share/gnunet/testing_hostkeys.ecc r, -} diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-transport-wlan b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-transport-wlan deleted file mode 100644 index 6f2f98e15..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-transport-wlan +++ /dev/null @@ -1,11 +0,0 @@ -# Last Modified: Tue Jul 28 11:44:00 2015 -#include - -/usr/local/lib/gnunet/libexec/gnunet-helper-transport-wlan flags=(complain) { - #include - - capability setuid, - - /usr/local/lib/gnunet/libexec/gnunet-helper-transport-wlan mr, - -} diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-transport-wlan-dummy b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-transport-wlan-dummy deleted file mode 100644 index d9ffed813..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-transport-wlan-dummy +++ /dev/null @@ -1,9 +0,0 @@ -# Last Modified: Tue Jul 28 11:36:52 2015 -#include - -/usr/local/lib/gnunet/libexec/gnunet-helper-transport-wlan-dummy flags=(complain) { - #include - - /usr/local/lib/gnunet/libexec/gnunet-helper-transport-wlan-dummy mr, - -} diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-vpn b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-vpn deleted file mode 100644 index 3f9051db3..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-helper-vpn +++ /dev/null @@ -1,16 +0,0 @@ -# Last Modified: Mon Jul 27 11:06:22 2015 -#include - -/usr/local/lib/gnunet/libexec/gnunet-helper-vpn flags=(complain) { - - capability net_admin, - capability setuid, - - /dev/net/tun rw, - /etc/ld.so.cache r, - /usr/lib/ld-*.so r, - /usr/lib/libc-*.so mr, - /usr/lib/libm-*.so mr, - /usr/local/lib/gnunet/libexec/gnunet-helper-vpn mr, - -} diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-namestore-fcfsd b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-namestore-fcfsd deleted file mode 100644 index 43527ae3b..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-namestore-fcfsd +++ /dev/null @@ -1,30 +0,0 @@ -# Last Modified: Tue Jul 21 17:25:12 2015 -#include - -/usr/local/lib/gnunet/libexec/gnunet-namestore-fcfsd { - #include - - #Librairies - /usr/lib/ld-*.so r, - /usr/lib/libffi.so.* mr, - /usr/lib/libgmp.so.* mr, - /usr/lib/libgnutls.so.* mr, - /usr/lib/libhogweed.so.* mr, - /usr/lib/libidn.so.* mr, - /usr/lib/libmicrohttpd.so.* mr, - /usr/lib/libnettle.so.* mr, - /usr/lib/libp11-kit.so.* mr, - /usr/lib/libpthread-*.so mr, - /usr/lib/libtasn1.so.* mr, - - /usr/lib/locale/locale-archive r, - - /usr/local/lib/gnunet/libexec/gnunet-namestore-fcfsd mr, - - #Gnunet librairies - /usr/local/lib/libgnunetdnsparser.so.* mr, - /usr/local/lib/libgnunetgnsrecord.so.* mr, - /usr/local/lib/libgnunetidentity.so.* mr, - /usr/local/lib/libgnunetnamestore.so.* mr, - /usr/local/lib/libgnunetstatistics.so.* mr, -} diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-arm b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-arm deleted file mode 100644 index fe3f037ed..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-arm +++ /dev/null @@ -1,109 +0,0 @@ -# Last Modified: Thu Jul 9 10:27:23 2015 - -#include - -/usr/local/lib/gnunet/libexec/gnunet-service-arm { - #include - - /dev/null ra, - - /tmp/gnunet-*-runtime/ rw, - /tmp/gnunet-*-runtime/gnunet-service-arm.sock rw, - /tmp/gnunet-*-runtime/gnunet-service-gns.sock rw, - /tmp/gnunet-*-runtime/gnunet-service-identity.unix rw, - /tmp/gnunet-*-runtime/gnunet-service-namestore.sock rw, - - /tmp/gnunet-system-runtime/ rw, - /tmp/gnunet-system-runtime/gnunet-service-*.sock rw, - /tmp/gnunet-system-runtime/gnunet-service-nse.unix rw, - /tmp/gnunet-system-runtime/gnunet-service-revocation.unix rw, - - /var/lib/gnunet/.local/share/gnunet/ r, - /var/lib/gnunet/.local/share/gnunet/revocation.dat r, - /var/lib/gnunet/.local/share/gnunet/peerstore/ a, - /var/lib/gnunet/.local/share/gnunet/peerstore/sqlite.db rwk, - /var/lib/gnunet/.local/share/gnunet/peerstore/sqlite.db-journal rw, - /var/lib/gnunet/.config/gnunet.conf r, - - #Librairies - /usr/lib/ld-*.so r, - /usr/lib/libpthread-*.so mr, - - /usr/lib/libsqlite3.so.* mr, - - /usr/lib/locale/locale-archive r, - - /usr/share/locale/locale-alias r, - - /usr/local/lib/gnunet/libexec/gnunet-service-arm mr, - - /usr/local/lib/gnunet/ r, - - /usr/local/lib/gnunet/libexec/ r, - - #Gnunet daemon - /usr/local/lib/gnunet/libexec/gnunet-daemon-exit Px, - /usr/local/lib/gnunet/libexec/gnunet-daemon-hostlist Px, - /usr/local/lib/gnunet/libexec/gnunet-daemon-latency-logger Px, - /usr/local/lib/gnunet/libexec/gnunet-daemon-testbed-underlay Px, - /usr/local/lib/gnunet/libexec/gnunet-daemon-topology Px, - /usr/local/lib/gnunet/libexec/gnunet-daemon-pt Px, - - /usr/local/lib/gnunet/libexec/gnunet-dns2gns Px, - - /usr/local/lib/gnunet/libexec/gnunet-gns-proxy Px, - - /usr/local/lib/gnunet/libexec/gnunet-namestore-fcfsd Px, - - #Gnunet service - /usr/local/lib/gnunet/libexec/gnunet-service-ats Px, - /usr/local/lib/gnunet/libexec/gnunet-service-cadet Px, - /usr/local/lib/gnunet/libexec/gnunet-service-core Px, - /usr/local/lib/gnunet/libexec/gnunet-service-conversation Px, - /usr/local/lib/gnunet/libexec/gnunet-service-datastore Px, - /usr/local/lib/gnunet/libexec/gnunet-service-dht Px, - /usr/local/lib/gnunet/libexec/gnunet-service-dns Px, - /usr/local/lib/gnunet/libexec/gnunet-service-fs Px, - /usr/local/lib/gnunet/libexec/gnunet-service-gns Px, - /usr/local/lib/gnunet/libexec/gnunet-service-identity Px, - /usr/local/lib/gnunet/libexec/gnunet-service-mesh Px, - /usr/local/lib/gnunet/libexec/gnunet-service-namecache Px, - /usr/local/lib/gnunet/libexec/gnunet-service-namestore Px, - /usr/local/lib/gnunet/libexec/gnunet-service-nse Px, - /usr/local/lib/gnunet/libexec/gnunet-service-peerinfo Px, - /usr/local/lib/gnunet/libexec/gnunet-service-peerstore Px, - /usr/local/lib/gnunet/libexec/gnunet-service-regex Px, - /usr/local/lib/gnunet/libexec/gnunet-service-resolver Px, - /usr/local/lib/gnunet/libexec/gnunet-service-revocation Px, - /usr/local/lib/gnunet/libexec/gnunet-service-set Px, - /usr/local/lib/gnunet/libexec/gnunet-service-scalarproduct-alice Px, - /usr/local/lib/gnunet/libexec/gnunet-service-scalarproduct-bob Px, - /usr/local/lib/gnunet/libexec/gnunet-service-statistics Px, - /usr/local/lib/gnunet/libexec/gnunet-service-template Px, - /usr/local/lib/gnunet/libexec/gnunet-service-testbed Px, - /usr/local/lib/gnunet/libexec/gnunet-service-testbed-logger Px, - /usr/local/lib/gnunet/libexec/gnunet-service-transport Px, - /usr/local/lib/gnunet/libexec/gnunet-service-vpn Px, - - #Gnunet helper - /usr/local/lib/gnunet/libexec/gnunet-helper-dns r, - - #Gnunet librairies - /usr/local/lib/libgnunetats.so.* mr, - /usr/local/lib/libgnunetcadet.so.* mr, - /usr/local/lib/libgnunetdht.so.* mr, - /usr/local/lib/libgnunetdnsstub.so.* mr, - /usr/local/lib/libgnunetgnsrecord.so.* r, - /usr/local/lib/libgnunethello.so.* mr, - /usr/local/lib/libgnunetnamecache.so.* r, - /usr/local/lib/libgnunetpeerstore.so.* mr, - /usr/local/lib/libgnunetregex.so.* mr, - /usr/local/lib/libgnunetset.so.* mr, - /usr/local/lib/libgnunetstatistics.so.* mr, - /usr/local/lib/libgnunettransport.so.* mr, - /usr/local/lib/libgnunettun.so.* mr, - - #Gnunet plugin - /usr/local/lib/gnunet/libgnunet_plugin_peerstore_sqlite.la r, - /usr/local/lib/gnunet/libgnunet_plugin_peerstore_sqlite.so mr, -} diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-ats b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-ats deleted file mode 100644 index 86273dc34..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-ats +++ /dev/null @@ -1,19 +0,0 @@ -# Last Modified: Wed Jul 8 10:49:34 2015 -#include - -/usr/local/lib/gnunet/libexec/gnunet-service-ats { - #include - - /usr/local/lib/gnunet/libexec/gnunet-service-ats mr, - - #Gnunet librairies - /usr/local/lib/libgnunethello.so.* mr, - /usr/local/lib/libgnunetstatistics.so.* mr, - /usr/local/lib/libgnunetats.so.* mr, - - #Gnunet plugin - /usr/local/lib/gnunet/libgnunet_plugin_ats_proportional.la r, - /usr/local/lib/gnunet/libgnunet_plugin_ats_proportional.so mr, - - /usr/lib/ld-*.so r, -} diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-cadet b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-cadet deleted file mode 100644 index f834a6d05..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-cadet +++ /dev/null @@ -1,21 +0,0 @@ -# Last Modified: Mon Jul 27 11:09:34 2015 -#include - -/usr/local/lib/gnunet/libexec/gnunet-service-cadet { - #include - - /usr/lib/ld-*.so r, - /usr/lib/libpthread-*.so mr, - /usr/lib/librt-*.so mr, - /usr/local/lib/gnunet/libexec/gnunet-service-cadet mr, - /usr/local/lib/libgnunetats.so.* mr, - /usr/local/lib/libgnunetblock.so.* mr, - /usr/local/lib/libgnunetcore.so.* mr, - /usr/local/lib/libgnunetdht.so.* mr, - /usr/local/lib/libgnunethello.so.* mr, - /usr/local/lib/libgnunetpeerinfo.so.* mr, - /usr/local/lib/libgnunetstatistics.so.* mr, - /usr/local/lib/libgnunettransport.so.* mr, - /var/lib/gnunet/.local/share/gnunet/private_key.ecc rk, - -} diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-conversation b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-conversation deleted file mode 100644 index 9b952866e..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-conversation +++ /dev/null @@ -1,27 +0,0 @@ -# Last Modified: Tue Jul 21 16:53:39 2015 -#include - -/usr/local/lib/gnunet/libexec/gnunet-service-conversation { - #include - - #Librairies - /usr/lib/ld-*.so r, - /usr/lib/libidn.so.* mr, - - /usr/local/lib/gnunet/libexec/gnunet-service-conversation mr, - - #Gnunet librairies - /usr/local/lib/libgnunetcadet.so.* mr, - /usr/local/lib/libgnunetconversation.so.* mr, - /usr/local/lib/libgnunetdnsparser.so.* mr, - /usr/local/lib/libgnunetgns.so.* mr, - /usr/local/lib/libgnunetgnsrecord.so.* mr, - /usr/local/lib/libgnunetidentity.so.* mr, - /usr/local/lib/libgnunetmesh.so.* mr, - /usr/local/lib/libgnunetmicrophone.so.* mr, - /usr/local/lib/libgnunetnamestore.so.* mr, - /usr/local/lib/libgnunetspeaker.so.* mr, - /usr/local/lib/libgnunetstatistics.so.* mr, - - /var/lib/gnunet/.local/share/gnunet/private_key.ecc rk, -} diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-core b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-core deleted file mode 100644 index e2b4229bb..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-core +++ /dev/null @@ -1,19 +0,0 @@ -# Last Modified: Thu Jul 9 10:16:30 2015 - -#include - -/usr/local/lib/gnunet/libexec/gnunet-service-core { - #include - - /var/lib/gnunet/.local/share/gnunet/private_key.ecc rk, - - /usr/lib/ld-*.so r, - - /usr/local/lib/gnunet/libexec/gnunet-service-core mr, - - #Gnunet librairies - /usr/local/lib/libgnunetats.so.* mr, - /usr/local/lib/libgnunethello.so.* mr, - /usr/local/lib/libgnunetstatistics.so.* mr, - /usr/local/lib/libgnunettransport.so.* mr, -} diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-datastore b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-datastore deleted file mode 100644 index b38121e65..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-datastore +++ /dev/null @@ -1,26 +0,0 @@ -# Last Modified: Thu Jul 9 10:16:30 2015 - -#include - -/usr/local/lib/gnunet/libexec/gnunet-service-datastore { - #include - - /var/lib/gnunet/.local/share/gnunet/datastore/bloomfilter.sqlite rw, - /var/lib/gnunet/.local/share/gnunet/datastore/sqlite.db rwk, - /var/lib/gnunet/.local/share/gnunet/datastore/sqlite.db-journal rw, - - #Librairies - /usr/lib/ld-*.so r, - /usr/lib/libpthread-*.so mr, - /usr/lib/libsqlite3.so.* mr, - - /usr/local/lib/gnunet/libexec/gnunet-service-datastore mr, - - #Gnunet plugin - /usr/local/lib/gnunet/libgnunet_plugin_datastore_sqlite.la r, - /usr/local/lib/gnunet/libgnunet_plugin_datastore_sqlite.so mr, - - #Gnunet Librairies - /usr/local/lib/libgnunetstatistics.so.* mr, - /usr/local/lib/libgnunetutil.so.* mr, -} diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-dht b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-dht deleted file mode 100644 index 224465cd5..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-dht +++ /dev/null @@ -1,56 +0,0 @@ -# Last Modified: Fri Jul 3 17:37:39 2015 -#include - -/usr/local/lib/gnunet/libexec/gnunet-service-dht { - #include - - /usr/local/lib/gnunet/libexec/gnunet-service-dht mr, - - #Gnunet librairies - /usr/local/lib/libgnunetstatistics.so.* mr, - /usr/local/lib/libgnunetcore.so.* mr, - /usr/local/lib/libgnunetnse.so.* mr, - /usr/local/lib/libgnunetats.so.* mr, - /usr/local/lib/libgnunettransport.so.* mr, - /usr/local/lib/libgnunetpeerinfo.so.* mr, - /usr/local/lib/libgnunethello.so.* mr, - /usr/local/lib/libgnunetblock.so.* mr, - /usr/local/lib/libgnunetdatacache.so.* mr, - /usr/local/lib/libgnunetfs.so.* mr, - /usr/local/lib/libgnunetdatastore.so.* mr, - /usr/local/lib/libgnunetregexblock.so.* mr, - /usr/local/lib/libgnunetgnsrecord.so.* mr, - /usr/local/lib/libgnunetdnsparser.so.* mr, - - #Gnunet plugin - /usr/local/lib/gnunet/ r, - /usr/local/lib/gnunet/libgnunet_plugin_block_template.la r, - /usr/local/lib/gnunet/libgnunet_plugin_block_template.so mr, - /usr/local/lib/gnunet/libgnunet_plugin_block_dns.la r, - /usr/local/lib/gnunet/libgnunet_plugin_block_dns.so mr, - /usr/local/lib/gnunet/libgnunet_plugin_block_fs.la r, - /usr/local/lib/gnunet/libgnunet_plugin_block_fs.so mr, - /usr/local/lib/gnunet/libgnunet_plugin_block_regex.la r, - /usr/local/lib/gnunet/libgnunet_plugin_block_regex.so mr, - /usr/local/lib/gnunet/libgnunet_plugin_block_dht.la r, - /usr/local/lib/gnunet/libgnunet_plugin_block_dht.so mr, - /usr/local/lib/gnunet/libgnunet_plugin_block_dht.so mr, - /usr/local/lib/gnunet/libgnunet_plugin_block_test.la r, - /usr/local/lib/gnunet/libgnunet_plugin_block_test.so mr, - /usr/local/lib/gnunet/libgnunet_plugin_block_gns.la r, - /usr/local/lib/gnunet/libgnunet_plugin_block_gns.so mr, - /usr/local/lib/gnunet/libgnunet_plugin_datacache_heap.la r, - /usr/local/lib/gnunet/libgnunet_plugin_datacache_heap.so mr, - - #Librairies - /usr/lib/ld-*.so r, - /usr/lib/libextractor.so.* mr, - /usr/lib/libbz2.so.* mr, - /usr/lib/librt-*.so mr, - /usr/lib/libpthread-*.so mr, - /usr/lib/libidn.so.* mr, - - /tmp/gnunet-system-runtime/gnunet-service-dht.sock w, - - /tmp/gnunet-datacachebloom* rw, -} diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-dns b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-dns deleted file mode 100644 index 2f2dd711a..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-dns +++ /dev/null @@ -1,19 +0,0 @@ -# Last Modified: Mon Jul 27 15:18:30 2015 -#include - -/usr/local/lib/gnunet/libexec/gnunet-service-dns { - #include - - capability setgid, - - /usr/lib/ld-*.so r, - - /usr/local/lib/gnunet/libexec/gnunet-helper-dns Px, - - /usr/local/lib/gnunet/libexec/gnunet-service-dns mr, - - #Gnunet librairies - /usr/local/lib/libgnunetdnsstub.so.* mr, - /usr/local/lib/libgnunetstatistics.so.* mr, - /usr/local/lib/libgnunettun.so.* mr, -} diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-fs b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-fs deleted file mode 100644 index 247d29282..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-fs +++ /dev/null @@ -1,59 +0,0 @@ -# Last Modified: Wed Jul 8 10:52:48 2015 - -#include - -/usr/local/lib/gnunet/libexec/gnunet-service-fs { - #include - - /etc/gnunet.conf r, - @{HOME}/.config/gnunet.conf r, - - /tmp/gnunet-system-runtime/gnunet-service-fs.sock w, - - /var/lib/gnunet/.local/share/gnunet/private_key.ecc rk, - - owner @{HOME}/.local/share/gnunet/fs/idxinfo.lst r, - - #Librairies - /usr/lib/ld-*.so r, - /usr/lib/libbz2.so.* mr, - /usr/lib/libextractor.so.* mr, - /usr/lib/libidn.so.* mr, - /usr/lib/libpthread-*.so mr, - /usr/lib/librt-*.so mr, - - /usr/local/lib/gnunet/libexec/gnunet-service-fs mr, - - #Gnunet plugin - /usr/local/lib/gnunet/ r, - /usr/local/lib/gnunet/libgnunet_plugin_block_dht.la r, - /usr/local/lib/gnunet/libgnunet_plugin_block_dht.so mr, - /usr/local/lib/gnunet/libgnunet_plugin_block_dns.la r, - /usr/local/lib/gnunet/libgnunet_plugin_block_dns.so mr, - /usr/local/lib/gnunet/libgnunet_plugin_block_fs.la r, - /usr/local/lib/gnunet/libgnunet_plugin_block_fs.so mr, - /usr/local/lib/gnunet/libgnunet_plugin_block_gns.la r, - /usr/local/lib/gnunet/libgnunet_plugin_block_gns.so mr, - /usr/local/lib/gnunet/libgnunet_plugin_block_regex.la r, - /usr/local/lib/gnunet/libgnunet_plugin_block_regex.so mr, - /usr/local/lib/gnunet/libgnunet_plugin_block_template.la r, - /usr/local/lib/gnunet/libgnunet_plugin_block_template.so mr, - /usr/local/lib/gnunet/libgnunet_plugin_block_test.la r, - /usr/local/lib/gnunet/libgnunet_plugin_block_test.so mr, - - #Gnunet librairies - /usr/local/lib/libgnunetats.so.* mr, - /usr/local/lib/libgnunetblock.so.* mr, - /usr/local/lib/libgnunetcadet.so.* mr, - /usr/local/lib/libgnunetcore.so.* mr, - /usr/local/lib/libgnunetdatastore.so.* mr, - /usr/local/lib/libgnunetdht.so.* mr, - /usr/local/lib/libgnunetdnsparser.so.* mr, - /usr/local/lib/libgnunetfs.so.* mr, - /usr/local/lib/libgnunetgnsrecord.so.* mr, - /usr/local/lib/libgnunethello.so.* mr, - /usr/local/lib/libgnunetmesh.so.* mr, - /usr/local/lib/libgnunetpeerstore.so.* mr, - /usr/local/lib/libgnunetregexblock.so.* mr, - /usr/local/lib/libgnunetstatistics.so.* mr, -} diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-gns b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-gns deleted file mode 100644 index c7f650d1b..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-gns +++ /dev/null @@ -1,29 +0,0 @@ -# Last Modified: Wed Jul 8 15:17:46 2015 - -#include - -/usr/local/lib/gnunet/libexec/gnunet-service-gns { - #include - - @{HOME}/.config/gnunet.conf r, - - #Librairies - /usr/lib/ld-2.21.so r, - /usr/lib/libidn.so.* mr, - - /usr/local/lib/gnunet/libexec/gnunet-service-gns mr, - - #Gnunet librairies - /usr/local/lib/libgnunetdht.so.* mr, - /usr/local/lib/libgnunetdns.so.* mr, - /usr/local/lib/libgnunetdnsparser.so.* mr, - /usr/local/lib/libgnunetdnsstub.so.* mr, - /usr/local/lib/libgnunetgnsrecord.so.* mr, - /usr/local/lib/libgnunetidentity.so.* mr, - /usr/local/lib/libgnunetnamecache.so.* mr, - /usr/local/lib/libgnunetnamestore.so.* mr, - /usr/local/lib/libgnunetrevocation.so.* mr, - /usr/local/lib/libgnunetstatistics.so.* mr, - /usr/local/lib/libgnunettun.so.* mr, - /usr/local/lib/libgnunetvpn.so.* mr, -} diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-identity b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-identity deleted file mode 100644 index 7e550acb9..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-identity +++ /dev/null @@ -1,24 +0,0 @@ -# Last Modified: Tue Jul 21 11:51:29 2015 -#include - -/usr/local/lib/gnunet/libexec/gnunet-service-identity { - #include - - /tmp/gnunet-*-runtime/ a, - - /usr/lib/ld-*.so r, - - /var/lib/gnunet/.local/share/gnunet/identity/ a, - /var/lib/gnunet/.local/share/gnunet/identity/egos/ ra, - - /usr/local/lib/gnunet/libexec/gnunet-service-identity mr, - /usr/local/lib/libgnunetstatistics.so.* mr, - - @{HOME}/.config/gnunet/identity/subsystem_defaults.conf rw, - - @{HOME}/.local/share/gnunet/identity/egos/ r, - @{HOME}/.local/share/gnunet/identity/egos/master-zone rk, - @{HOME}/.local/share/gnunet/identity/egos/private-zone rk, - @{HOME}/.local/share/gnunet/identity/egos/short-zone rk, - @{HOME}/.local/share/gnunet/identity/egos/sks-zone rk, -} diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-mesh b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-mesh deleted file mode 100644 index 1496e228f..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-mesh +++ /dev/null @@ -1,29 +0,0 @@ -# Last Modified: Fri Jul 3 17:37:56 2015 -#include - -/usr/local/lib/gnunet/libexec/gnunet-service-mesh { - #include - - /usr/local/lib/gnunet/libexec/gnunet-service-mesh mr, - - #Gnunet librairies - /usr/local/lib/libgnunetats.so.* mr, - /usr/local/lib/libgnunettransport.so.* mr, - /usr/local/lib/libgnunetcore.so.* mr, - /usr/local/lib/libgnunetdht.so.* mr, - /usr/local/lib/libgnunetstatistics.so.* mr, - /usr/local/lib/libgnunetpeerinfo.so.* mr, - /usr/local/lib/libgnunethello.so.* mr, - /usr/local/lib/libgnunetblock.so.* mr, - - #Librairies - /usr/lib/librt-*.so mr, - /usr/lib/libpthread-*.so mr, - /usr/lib/ld-*.so r, - - @{HOME}/.local/share/gnunet/private_key.ecc rk, - - /tmp/gnunet-system-runtime/gnunet-service-mesh.sock w, - - /var/lib/gnunet/.local/share/gnunet/private_key.ecc rwk, -} diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-namecache b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-namecache deleted file mode 100644 index 6338c9a5b..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-namecache +++ /dev/null @@ -1,29 +0,0 @@ -# Last Modified: Thu Jul 9 10:01:49 2015 -#include - -/usr/local/lib/gnunet/libexec/gnunet-service-namecache { - #include - - /usr/local/lib/gnunet/libexec/gnunet-service-namecache mr, - - #Gnunet librairies - /usr/local/lib/libgnunetdnsparser.so.* mr, - /usr/local/lib/libgnunetnamecache.so.* mr, - /usr/local/lib/libgnunetstatistics.so.* mr, - /usr/local/lib/libgnunetgnsrecord.so.* mr, - - #Gnunet plugin - /usr/local/lib/gnunet/libgnunet_plugin_namecache_sqlite.la r, - /usr/local/lib/gnunet/libgnunet_plugin_namecache_sqlite.so mr, - - /var/lib/gnunet/.local/share/gnunet/namecache/ r, - /var/lib/gnunet/.local/share/gnunet/namecache/sqlite.db rwk, - /var/lib/gnunet/.local/share/gnunet/namecache/sqlite.db-journal rw, - - #Librairies - /usr/lib/libpthread-*.so mr, - /usr/lib/libsqlite3.so.* mr, - /usr/lib/libidn.so.* mr, - /usr/lib/ld-*.so r, -} - diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-namestore b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-namestore deleted file mode 100644 index 3b917a2a3..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-namestore +++ /dev/null @@ -1,35 +0,0 @@ -# Last Modified: Tue Jul 7 10:43:41 2015 -#include - -/usr/local/lib/gnunet/libexec/gnunet-service-namestore { - #include - - /usr/local/lib/gnunet/libexec/gnunet-service-namestore mr, - - #Gnunet librairies - /usr/local/lib/libgnunetnamecache.so.* mr, - /usr/local/lib/libgnunetgnsrecord.so.* mr, - /usr/local/lib/libgnunetstatistics.so.* mr, - /usr/local/lib/libgnunetnamestore.so.* mr, - /usr/local/lib/libgnunetdnsparser.so.* mr, - - #Gnunet plugin - /usr/local/lib/gnunet/libgnunet_plugin_namestore_sqlite.la r, - /usr/local/lib/gnunet/libgnunet_plugin_namestore_sqlite.so mr, - - #Librairies - /usr/lib/libidn.so.* mr, - /usr/lib/ld-*.so r, - /usr/lib/libsqlite3.so.* mr, - /usr/lib/libpthread-*.so mr, - - /var/lib/gnunet/.local/share/gnunet/namestore/ ra, - /var/lib/gnunet/.local/share/gnunet/namestore/sqlite.db rwk, - /var/lib/gnunet/.local/share/gnunet/namestore/sqlite.db-journal rw, - - @{HOME}/.local/share/gnunet/namestore/ r, - @{HOME}/.local/share/gnunet/namestore/sqlite.db rwk, - @{HOME}/.local/share/gnunet/namestore/sqlite.db-journal rw, - - /tmp/gnunet-*-runtime/ a, -} diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-nse b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-nse deleted file mode 100644 index 54acd5215..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-nse +++ /dev/null @@ -1,23 +0,0 @@ -# Last Modified: Fri Jul 3 17:37:49 2015 -#include - -/usr/local/lib/gnunet/libexec/gnunet-service-nse { - #include - - /usr/local/lib/gnunet/libexec/gnunet-service-nse mr, - - #Gnunet librairies - /usr/local/lib/libgnunetnse.so.* mr, - /usr/local/lib/libgnunetcore.so.* mr, - /usr/local/lib/libgnunetstatistics.so.* mr, - - /usr/lib/ld-*.so mr, - - /tmp/gnunet-system-runtime/gnunet-service-nse.unix w, - - @{HOME}/.local/share/gnunet/private_key.ecc rk, - owner @{HOME}/.local/share/gnunet/nse/proof.dat rw, - - /var/lib/gnunet/.local/share/gnunet/private_key.ecc rwk, - /var/lib/gnunet/.local/share/gnunet/nse/proof.dat rw, -} diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-peerinfo b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-peerinfo deleted file mode 100644 index 8c7f079b4..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-peerinfo +++ /dev/null @@ -1,20 +0,0 @@ -# Last Modified: Wed Jul 8 17:03:17 2015 - -#include - -/usr/local/lib/gnunet/libexec/gnunet-service-peerinfo { - #include - - /usr/local/share/gnunet/hellos/ r, - /usr/local/share/gnunet/hellos/* r, - - /var/lib/gnunet/.local/share/gnunet/peerinfo/hosts/ r, - /var/lib/gnunet/.local/share/gnunet/peerinfo/hosts/* rw, - - /usr/lib/ld-*.so r, - - /usr/local/lib/gnunet/libexec/gnunet-service-peerinfo mr, - - /usr/local/lib/libgnunethello.so.* mr, - /usr/local/lib/libgnunetstatistics.so.* mr, -} diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-peerstore b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-peerstore deleted file mode 100644 index 0f9f8ed8c..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-peerstore +++ /dev/null @@ -1,23 +0,0 @@ -# Last Modified: Mon Jul 27 11:06:13 2015 -#include - -/usr/local/lib/gnunet/libexec/gnunet-service-peerstore { - #include - - #Librairies - /usr/lib/ld-*.so r, - /usr/lib/libpthread-*.so mr, - /usr/lib/libsqlite3.so.* mr, - - /usr/local/lib/gnunet/libexec/gnunet-service-peerstore mr, - - #Gnunet Plugin - /usr/local/lib/gnunet/libgnunet_plugin_peerstore_sqlite.la r, - /usr/local/lib/gnunet/libgnunet_plugin_peerstore_sqlite.so mr, - - #Gnunet librairies - /usr/local/lib/libgnunetpeerstore.so.* mr, - - /var/lib/gnunet/.local/share/gnunet/peerstore/sqlite.db rwk, - /var/lib/gnunet/.local/share/gnunet/peerstore/sqlite.db-journal rw, -} diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-regex b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-regex deleted file mode 100644 index e82f0483a..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-regex +++ /dev/null @@ -1,17 +0,0 @@ -# Last Modified: Tue Jul 21 16:59:39 2015 -#include - -/usr/local/lib/gnunet/libexec/gnunet-service-regex { - #include - - /usr/lib/ld-*.so r, - - /usr/local/lib/gnunet/libexec/gnunet-service-regex mr, - - #Gnunet librairies - /usr/local/lib/libgnunetdht.so.* mr, - /usr/local/lib/libgnunetregexblock.so.* mr, - /usr/local/lib/libgnunetstatistics.so.* mr, - - /var/lib/gnunet/.local/share/gnunet/private_key.ecc rk, -} diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-resolver b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-resolver deleted file mode 100644 index 0ffa5cea2..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-resolver +++ /dev/null @@ -1,32 +0,0 @@ -# Last Modified: Thu Jul 9 10:01:36 2015 -#include - -/usr/local/lib/gnunet/libexec/gnunet-service-resolver { - #include - - /usr/local/lib/gnunet/libexec/gnunet-service-resolver mr, - - #Librairies - /usr/lib/ld-*.so r, - /usr/lib/libnss_files-*.so mr, - /usr/lib/libnss_gns.so.* mr, - /usr/lib/libnss_dns-*.so mr, - /usr/lib/libresolv-*.so mr, - /usr/lib/libnss_myhostname.so.* mr, - /usr/lib/librt-*.so mr, - /usr/lib/liblzma.so.* mr, - /usr/lib/liblz4.so.* mr, - /usr/lib/libacl.so.* mr, - /usr/lib/libidn.so.* mr, - /usr/lib/libseccomp.so.* mr, - /usr/lib/libcap.so.* mr, - /usr/lib/libpthread-*.so mr, - /usr/lib/libattr.so.* mr, - - /etc/nsswitch.conf r, - /etc/resolv.conf r, - /etc/host.conf r, - /etc/hosts r, - - /tmp/gnunet-system-runtime/gnunet-service-resolver.sock w, -} diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-revocation b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-revocation deleted file mode 100644 index c226502b3..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-revocation +++ /dev/null @@ -1,26 +0,0 @@ -# Last Modified: Thu Jul 9 10:16:30 2015 - -#include - -/usr/local/lib/gnunet/libexec/gnunet-service-revocation { - #include - - /etc/gnunet.conf r, - @{HOME}/.config/gnunet.conf r, - - /tmp/gnunet-system-runtime/gnunet-service-revocation.unix w, - - /var/lib/gnunet/.local/share/gnunet/revocation.dat rw, - - @{HOME}/.local/share/gnunet/revocation.dat rw, - - /usr/lib/ld-*.so r, - - /usr/local/lib/gnunet/libexec/gnunet-service-revocation mr, - - #Gnunet librairies - /usr/local/lib/libgnunetcore.so.* mr, - /usr/local/lib/libgnunetrevocation.so.* mr, - /usr/local/lib/libgnunetset.so.* mr, - /usr/local/lib/libgnunetstatistics.so.* mr, -} diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-scalarproduct-alice b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-scalarproduct-alice deleted file mode 100644 index e61a20daa..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-scalarproduct-alice +++ /dev/null @@ -1,12 +0,0 @@ -# Last Modified: Mon Jul 27 15:48:05 2015 -#include - -/usr/local/lib/gnunet/libexec/gnunet-service-scalarproduct-alice { - #include - - /usr/lib/ld-*.so r, - /usr/local/lib/gnunet/libexec/gnunet-service-scalarproduct-alice mr, - /usr/local/lib/libgnunetcadet.so.* mr, - /usr/local/lib/libgnunetset.so.* mr, - -} diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-scalarproduct-bob b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-scalarproduct-bob deleted file mode 100644 index c48ac50dc..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-scalarproduct-bob +++ /dev/null @@ -1,11 +0,0 @@ -# Last Modified: Mon Jul 27 15:48:05 2015 -#include - -/usr/local/lib/gnunet/libexec/gnunet-service-scalarproduct-bob { - #include - - /usr/lib/ld-*.so r, - /usr/local/lib/gnunet/libexec/gnunet-service-scalarproduct-bob mr, - /usr/local/lib/libgnunetcadet.so.* mr, - /usr/local/lib/libgnunetset.so.* mr, -} diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-set b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-set deleted file mode 100644 index d711f132c..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-set +++ /dev/null @@ -1,17 +0,0 @@ -# Last Modified: Wed Jul 8 10:52:48 2015 -#include - -/usr/local/lib/gnunet/libexec/gnunet-service-set { - #include - - /usr/local/lib/gnunet/libexec/gnunet-service-set mr, - - #Gnunet librairies - /usr/local/lib/libgnunetcadet.so.* mr, - /usr/local/lib/libgnunetcore.so.* mr, - /usr/local/lib/libgnunetmesh.so.* mr, - /usr/local/lib/libgnunetblock.so.* mr, - - #Librairies - /usr/lib/ld-*.so r, -} diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-statistics b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-statistics deleted file mode 100644 index 1ff8a8fd1..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-statistics +++ /dev/null @@ -1,15 +0,0 @@ -# Last Modified: Thu Jul 9 10:16:30 2015 - -#include - -/usr/local/lib/gnunet/libexec/gnunet-service-statistics { - #include - - /var/lib/gnunet/.local/share/gnunet/statistics.dat rw, - - /usr/lib/ld-*.so r, - - /usr/local/lib/gnunet/libexec/gnunet-service-statistics mr, - - /usr/local/lib/libgnunetstatistics.so.* mr, -} diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-template b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-template deleted file mode 100644 index 15a00cbee..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-template +++ /dev/null @@ -1,15 +0,0 @@ -# Last Modified: Tue Jul 21 16:06:04 2015 -#include - -/usr/local/lib/gnunet/libexec/gnunet-service-template { - #include - - /tmp/gnunet-system-runtime/ w, - /tmp/gnunet-system-runtime/gnunet-service-template.sock w, - - #Librairies - /usr/lib/ld-*.so r, - - #Gnunet Librairies - /usr/local/lib/gnunet/libexec/gnunet-service-template mr, -} diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-testbed b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-testbed deleted file mode 100644 index de9ad2675..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-testbed +++ /dev/null @@ -1,35 +0,0 @@ -# Last Modified: Mon Jul 27 11:02:46 2015 -#include - -/usr/local/lib/gnunet/libexec/gnunet-service-testbed flags=(complain) { - #include - - /etc/gai.conf r, - - /tmp/gnunet-system-runtime/ w, - /tmp/gnunet-system-runtime/gnunet-service-testbed-barrier.sock w, - /tmp/gnunet-system-runtime/gnunet-service-testbed.sock w, - - /usr/lib/ld-*.so r, - - /dev/null r, - - /usr/local/lib/gnunet/libexec/gnunet-* r, - - /usr/local/lib/gnunet/libexec/ r, - /usr/local/lib/gnunet/libexec/gnunet-service-arm Px, - /usr/local/lib/gnunet/libexec/gnunet-service-testbed mr, - - #Gnunet librairies - /usr/local/lib/libgnunetarm.so.* mr, - /usr/local/lib/libgnunetats.so.* mr, - /usr/local/lib/libgnunetcore.so.* mr, - /usr/local/lib/libgnunethello.so.* mr, - /usr/local/lib/libgnunetstatistics.so.* mr, - /usr/local/lib/libgnunettestbed.so.* mr, - /usr/local/lib/libgnunettesting.so.* mr, - /usr/local/lib/libgnunettransport.so.* mr, - - /usr/local/share/gnunet/testing_hostkeys.ecc r, - -} diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-testbed-logger b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-testbed-logger deleted file mode 100644 index b646b9450..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-testbed-logger +++ /dev/null @@ -1,16 +0,0 @@ -# Last Modified: Tue Jul 21 17:19:18 2015 -#include - -/usr/local/lib/gnunet/libexec/gnunet-service-testbed-logger { - #include - - #??? - /tmp/archlinux_*.dat w, - - /tmp/gnunet-system-runtime/ w, - /tmp/gnunet-system-runtime/gnunet-gnunet-testbed-logger.sock w, - - /usr/lib/ld-*.so r, - - /usr/local/lib/gnunet/libexec/gnunet-service-testbed-logger mr, -} diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-transport b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-transport deleted file mode 100644 index b50541f4c..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-transport +++ /dev/null @@ -1,28 +0,0 @@ -# Last Modified: Thu Jul 9 10:16:30 2015 - -#include - -/usr/local/lib/gnunet/libexec/gnunet-service-transport { - #include - - /var/lib/gnunet/.local/share/gnunet/private_key.ecc rk, - - /usr/lib/ld-*.so r, - - /usr/local/lib/gnunet/libexec/gnunet-service-transport mr, - - #Gnunet plugin - /usr/local/lib/gnunet/libgnunet_plugin_transport_tcp.la r, - /usr/local/lib/gnunet/libgnunet_plugin_transport_tcp.so mr, - /usr/local/lib/gnunet/libgnunet_plugin_transport_udp.la r, - /usr/local/lib/gnunet/libgnunet_plugin_transport_udp.so mr, - - #Gnunet librairies - /usr/local/lib/libgnunetats.so.* mr, - /usr/local/lib/libgnunetfragmentation.so.* mr, - /usr/local/lib/libgnunethello.so.* mr, - /usr/local/lib/libgnunetnat.so.* mr, - /usr/local/lib/libgnunetpeerinfo.so.* mr, - /usr/local/lib/libgnunetstatistics.so.* mr, - /usr/local/lib/libgnunettransport.so.* mr, -} diff --git a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-vpn b/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-vpn deleted file mode 100644 index 48fda8563..000000000 --- a/contrib/apparmor/usr.local.lib.gnunet.libexec.gnunet-service-vpn +++ /dev/null @@ -1,26 +0,0 @@ -# Last Modified: Mon Jul 20 11:20:57 2015 -#include - -/usr/local/lib/gnunet/libexec/gnunet-service-vpn { - #include - - capability setuid, - capability net_admin, - - /dev/net/tun rw, - - /usr/local/lib/gnunet/libexec/gnunet-service-vpn mr, - - #Librairies - /usr/lib/ld-*.so r, - - #Gnunet helper - /usr/local/lib/gnunet/libexec/gnunet-helper-vpn Px, - - #Gnunet librairies - /usr/local/lib/libgnunetcadet.so.* mr, - /usr/local/lib/libgnunetmesh.so.* mr, - /usr/local/lib/libgnunetregex.so.* mr, - /usr/local/lib/libgnunetstatistics.so.* mr, - /usr/local/lib/libgnunettun.so.* mr, -} -- cgit v1.2.3